Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gemalto sentinel ldk vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-11496
Stack buffer overflow in hasplms in Gemalto ACC (Admin Control Center), all versions ranging from HASP SRM 2.10 to Sentinel LDK 7.50, allows remote malicious users to execute arbitrary code via malformed ASN.1 streams in V2C and similar input files.
Gemalto Sentinel Ldk Rte 2.10
Gemalto Sentinel Ldk Rte 7.50
Gemalto Sentinel Ldk Rte 3.0
Gemalto Sentinel Ldk Rte 7.1
1 Article
9.8
CVSSv3
CVE-2017-11497
Stack buffer overflow in hasplms in Gemalto ACC (Admin Control Center), all versions ranging from HASP SRM 2.10 to Sentinel LDK 7.50, allows remote malicious users to execute arbitrary code via language packs containing filenames longer than 1024 characters.
Gemalto Sentinel Ldk Rte 7.1
Gemalto Sentinel Ldk Rte 7.50
Gemalto Sentinel Ldk Rte 2.10
Gemalto Sentinel Ldk Rte 3.0
7.5
CVSSv3
CVE-2017-11498
Buffer overflow in hasplms in Gemalto ACC (Admin Control Center), all versions ranging from HASP SRM 2.10 to Sentinel LDK 7.50, allows remote malicious users to shut down the remote process (a denial of service) via a language pack (ZIP file) with invalid HTML files.
Gemalto Sentinel Ldk Rte 3.0
Gemalto Sentinel Ldk Rte 7.1
Gemalto Sentinel Ldk Rte 2.10
Gemalto Sentinel Ldk Rte 7.50
6.5
CVSSv3
CVE-2019-8283
Hasplm cookie in Gemalto Admin Control Center, all versions before 7.92, does not have 'HttpOnly' flag. This allows malicious javascript to steal it.
Gemalto Sentinel Ldk
5.3
CVSSv3
CVE-2019-8282
Gemalto Admin Control Center, all versions before 7.92, uses cleartext HTTP to communicate with www3.safenet-inc.com to obtain language packs. This allows malicious user to do man-in-the-middle (MITM) attack and replace original language pack by malicious one.
Gemalto Sentinel Ldk
6.1
CVSSv3
CVE-2018-8900
The License Manager service of HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTE 7.80 allows remote malicious users to inject malicious web script in the logs page of Admin Control Center (ACC) for cross-site scripting (XSS) vulnerability.
Gemalto Sentinel Ldk Rte
7.5
CVSSv3
CVE-2018-6304
Stack overflow in custom XML-parser in Gemalto's Sentinel LDK RTE version prior to 7.65 leads to remote denial of service
Gemalto Sentinel Ldk Rte
7.5
CVSSv3
CVE-2018-6305
Denial of service in Gemalto's Sentinel LDK RTE version prior to 7.65
Gemalto Sentinel Ldk Rte
7.8
CVSSv3
CVE-2019-18232
SafeNet Sentinel LDK License Manager, all versions before 7.101(only Microsoft Windows versions are affected) is vulnerable when configured as a service. This vulnerability may allow an attacker with local access to create, write, and/or delete files in system folder using symbol...
Gemalto Sentinel Ldk License Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
Vulmon