Filtered by vendor Gemalto
Subscriptions
Total
26 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2019-9156 | 1 Gemalto | 1 Ezio Ds3 Server | 2024-08-04 | N/A |
Gemalto DS3 Authentication Server 2.6.1-SP01 allows OS Command Injection. | ||||
CVE-2019-9157 | 1 Gemalto | 1 Ezio Ds3 Server | 2024-08-04 | N/A |
Gemalto DS3 Authentication Server 2.6.1-SP01 allows Local File Disclosure. | ||||
CVE-2019-9158 | 1 Gemalto | 1 Ezio Ds3 Server | 2024-08-04 | N/A |
Gemalto DS3 Authentication Server 2.6.1-SP01 has Broken Access Control. | ||||
CVE-2019-8282 | 1 Gemalto | 1 Sentinel Ldk | 2024-08-04 | 5.3 Medium |
Gemalto Admin Control Center, all versions prior to 7.92, uses cleartext HTTP to communicate with www3.safenet-inc.com to obtain language packs. This allows attacker to do man-in-the-middle (MITM) attack and replace original language pack by malicious one. | ||||
CVE-2019-8283 | 1 Gemalto | 1 Sentinel Ldk | 2024-08-04 | 6.5 Medium |
Hasplm cookie in Gemalto Admin Control Center, all versions prior to 7.92, does not have 'HttpOnly' flag. This allows malicious javascript to steal it. | ||||
CVE-2019-6534 | 1 Gemalto | 1 Sentinel Ultrapro Client Library | 2024-08-04 | 7.8 High |
The uncontrolled search path element vulnerability in Gemalto Sentinel UltraPro Client Library ux32w.dll Versions 1.3.0, 1.3.1, and 1.3.2 enables an attacker to load and execute a malicious file. |