Lucene search
K

31 matches found

CVE
CVE
added 2017/10/03 1:0 p.m.101 views

CVE-2017-12818

CVE-2017-12818 is the Sentinel/ Gemalto vulnerability: a stack-based buffer overflow in the custom XML-parser of Sentinel HASP SRM, Sentinel HASP, and Sentinel LDK runtime (prior to LDK RTE 7.55). Impact per ICS-CERT: remote code execution or denial of service. Affected products include HASP SRM/...

7.5CVSS7.9AI score0.0189EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2017/10/03 1:0 p.m.19 views

CVE-2017-12821

Memory corruption in Gemalto's HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTE version 7.55 might cause remote code execution...

9.9AI score0.02908EPSS
Exploits0References4
CVE
CVE
added 2017/10/03 1:0 p.m.60 views

CVE-2017-12819

CVE-2017-12819 refers to remote manipulation of the Gemalto SafeNet Sentinel language-pack updater, enabling NTLM-relay attacks for the system user in HASP SRM, Sentinel HASP and Sentinel LDK before Sentinel LDK RTE 7.55. Connected advisories corroborate remote NTLM-relay risk and advise upgradin...

9.8CVSS9.4AI score0.01356EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2017/10/03 1:0 p.m.62 views

CVE-2017-12820

CVE-2017-12820 affects Gemalto SafeNet Sentinel stacks (HASP SRM, Sentinel HASP, Sentinel LDK) prior to Sentinel LDK RTE 7.55. The vulnerability is described as an arbitrary memory read from a controlled memory pointer, which could enable remote denial of service. Public advisories indicate the i...

7.5CVSS7.7AI score0.01684EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2017/10/03 1:0 p.m.52 views

CVE-2017-12822

CVE-2017-12822 affects Gemalto’s HASP SRM, Sentinel HASP and Sentinel LDK prior to Sentinel LDK RTE 7.55. The NEAR-term root cause is an improper access control flaw that allows the administrative interface to be remotely enabled and disabled without authentication, potentially expanding the atta...

9.9CVSS9.3AI score0.01166EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2017/10/03 1:0 p.m.18 views

CVE-2017-12819

Remote manipulations with language pack updater lead to NTLM-relay attack for system user in Gemalto's HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTE version 7.55...

9.5AI score0.01356EPSS
Exploits0References3
NVD
NVD
added 2011/12/17 3:54 a.m.14 views

CVE-2011-3339

Cross-site scripting XSS vulnerability in the Admin Control Center in Sentinel HASP Run-time Environment 5.95 and earlier in SafeNet Sentinel HASP formerly Aladdin HASP SRM run-time installer before 6.x and SDK before 5.11, as used in 7 Technologies 7T IGSS 7 and other products, when Firefox 2.0 ...

4.3CVSS5.6AI score0.01457EPSS
Exploits0References4
Prion
Prion
added 2011/12/17 3:54 a.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Admin Control Center in Sentinel HASP Run-time Environment 5.95 and earlier in SafeNet Sentinel HASP formerly Aladdin HASP SRM run-time installer before 6.x and SDK before 5.11, as used in 7 Technologies 7T IGSS 7 and other products, when Firefox 2.0 ...

4.3CVSS6AI score0.01457EPSS
Exploits0References4Affected Software3
CVE
CVE
added 2011/12/17 2:0 a.m.54 views

CVE-2011-3339

The CVE-2011-3339 entry describes an XSS vulnerability in the Admin Control Center of SafeNet Sentinel HASP/SRM, affecting HASP Run-time Environment 5.95 and earlier, with installers before 6.x and SDKs before 5.11. The issue arises from inadequate input validation in the web application, which c...

4.3CVSS5.8AI score0.01457EPSS
Exploits0References4Affected Software3
Cvelist
Cvelist
added 2011/12/17 2:0 a.m.24 views

CVE-2011-3339

Cross-site scripting XSS vulnerability in the Admin Control Center in Sentinel HASP Run-time Environment 5.95 and earlier in SafeNet Sentinel HASP formerly Aladdin HASP SRM run-time installer before 6.x and SDK before 5.11, as used in 7 Technologies 7T IGSS 7 and other products, when Firefox 2.0 ...

5.6AI score0.01457EPSS
Exploits0References4
ICS
ICS
added 2011/08/13 6:0 a.m.54 views

Safenet Sentinel and 7-T Input Sanitization Vulnerability

Overview ICS-CERT originally released advisory ICSA-11-314-01P on the US-CERT secure portal on November 14, 2011. This web page release was delayed to allow users time to download and install the update. Security researcher Carlos Mario Penagos Hollman of Synapse-labs has identified an input...

4.3CVSS6.1AI score0.01457EPSS
Exploits0References10
Rows per page
Query Builder