CVE Tools

gemalto

Security Productscommercial

21

Cumulative CVEs

3

Monthly snapshots

#35

Peak rank

Top products

gemalto's sentinel ldk rte2 sentinel ldk rte2 safenet authentication service windows logon agent2

Latest CVEs

The 15 most recently published vulnerabilities affecting gemalto.

CVE-2019-18232SafeNet Sentinel LDK License Manager, all versions prior to 7.101(only Microsoft Windows versions are affected) is vulnerable when configured as a service. This vulnerability may allow an attacker ...7.8Dec 11, 2019
CVE-2019-8282Gemalto Admin Control Center, all versions prior to 7.92, uses cleartext HTTP to communicate with www3.safenet-inc.com to obtain language packs. This allows attacker to do man-in-the-middle (MITM) ...5.3Jun 7, 2019
CVE-2019-8283Hasplm cookie in Gemalto Admin Control Center, all versions prior to 7.92, does not have 'HttpOnly' flag. This allows malicious javascript to steal it.6.5Jun 7, 2019
CVE-2019-9156Gemalto DS3 Authentication Server 2.6.1-SP01 allows OS Command Injection.8.0Jun 5, 2019
CVE-2019-9157Gemalto DS3 Authentication Server 2.6.1-SP01 allows Local File Disclosure.5.7Jun 5, 2019
CVE-2019-9158Gemalto DS3 Authentication Server 2.6.1-SP01 has Broken Access Control.5.7Jun 5, 2019
CVE-2019-6534The uncontrolled search path element vulnerability in Gemalto Sentinel UltraPro Client Library ux32w.dll Versions 1.3.0, 1.3.1, and 1.3.2 enables an attacker to load and execute a malicious file.7.8Apr 11, 2019
CVE-2018-15492A vulnerability in the lservnt.exe component of Sentinel License Manager version 8.5.3.35 (fixed in 8.5.3.2403) causes UDP amplification.7.5Aug 18, 2018
CVE-2018-8900The License Manager service of HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTE 7.80 allows remote attackers to inject malicious web script in the logs page of Admin Cont...6.1May 2, 2018
CVE-2018-6305Denial of service in Gemalto's Sentinel LDK RTE version before 7.657.5Mar 13, 2018
CVE-2018-6304Stack overflow in custom XML-parser in Gemalto's Sentinel LDK RTE version before 7.65 leads to remote denial of service7.5Mar 13, 2018
CVE-2015-7598SafeNet Authentication Service TokenValidator Proxy Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying a...7.8Mar 2, 2018
CVE-2015-7597SafeNet Authentication Service IIS Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module.7.8Mar 2, 2018
CVE-2015-7596SafeNet Authentication Service End User Software Tools for Windows uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by mo...7.8Mar 2, 2018
CVE-2015-7967SafeNet Authentication Service for Citrix Web Interface Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifyi...7.8Mar 2, 2018