CyberSec.Space Logo
Back to CVE Browser

CVE-2021-32928

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1540%
EPSS Percentile36.41th
PublishedJun 16, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

The Sentinel LDK Run-Time Environment installer (Versions 7.6 and prior) adds a firewall rule named “Sentinel License Manager” that allows incoming connections from private networks using TCP Port 1947. While uninstalling, the uninstaller fails to close Port 1947.

Affected Platforms (CPE)

📦
Thalesgroup

Sentinel Ldk Run Time Environment

<= 7.6

References & Advisories

🔗 https://us-cert.cisa.gov/ics/advisories/icsa-21-159-06
🔗 https://us-cert.cisa.gov/ics/advisories/icsa-21-159-06

Related Vulnerabilities

CVE-2021-217710.0

Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component: Gateway). The supported version tha...

CVE-2021-2879910.0

An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 (Hybrid Backup Sync. ) If exploited, th...

CVE-2021-4422810.0

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration...

CVE-2021-2099810.0

In multiple managed switches by WAGO in different versions without authorization and with specially crafted packets it is possible...