Gemalto Admin Control Center, all versions prior to 7.92, uses cleartext HTTP to communicate with www3.safenet-inc.com to obtain language packs. This allows attacker to do man-in-the-middle (MITM) attack and replace original language pack by malicious one.
[
{
"product": "Sentinel LDK RTE",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "7.91"
}
]
}
]