CRITICAL🇬🇧 English

CVE-2021-32928

CVSS 9.8v3.1pub. 2021-06-16upd. 2024-11-21

The Sentinel LDK Run-Time Environment installer (Versions 7.6 and prior) adds a firewall rule named “Sentinel License Manager” that allows incoming connections from private networks using TCP Port 1947. While uninstalling, the uninstaller fails to close Port 1947.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Thalesgroup Sentinel Ldk Run Time Environment

    APP
    Thalesgroup
    ≤ 7.6
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Firewall
CWE
Referencje

Powiązane podatności

CVE-2023-7016HIGH7.8ten sam vendor

A flaw in Thales SafeNet Authentication Client prior to 10.8 R10 on Windows allows an attacker to execute code...

CVE-2023-5993HIGH7.8ten sam vendor

A flaw in the Windows Installer in Thales SafeNet Authentication Client prior to 10.8 R10 on Windows allows an...

CVE-2024-0197HIGH7.8ten sam vendor

A flaw in the installer for Thales SafeNet Sentinel HASP LDK prior to 9.16 on Windows allows an attacker to es...

CVE-2021-42810HIGH7.8ten sam vendor

A flaw in the previous versions of the product may allow an authenticated attacker the ability to execute code...

CVE-2021-42138HIGH7.2ten sam vendor

A user of a machine protected by SafeNet Agent for Windows Logon may leverage weak entropy to access the encry...

CVE-2021-32928 — CRITICAL 9.8 | CVEbaza.pl