CyberSec.Space Logo
CVEブラウザに戻る

CVE-2021-32928

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1540%
EPSS Percentile36.41th
Published2021年6月16日
Last Modified2024年11月21日

Vulnerability Description

The Sentinel LDK Run-Time Environment installer (Versions 7.6 and prior) adds a firewall rule named “Sentinel License Manager” that allows incoming connections from private networks using TCP Port 1947. While uninstalling, the uninstaller fails to close Port 1947.

Affected Platforms (CPE)

📦
Thalesgroup

Sentinel Ldk Run Time Environment

<= 7.6

References & Advisories

🔗 https://us-cert.cisa.gov/ics/advisories/icsa-21-159-06
🔗 https://us-cert.cisa.gov/ics/advisories/icsa-21-159-06

関連する脆弱性情報

CVE-2021-3467910.0

Thycotic Password Reset Server before 5.3.0 allows credential disclosure.

CVE-2021-021110.0

An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon ...

CVE-2021-4155610.0

sqclass.cpp in Squirrel through 2.2.5 and 3.x through 3.1 allows an out-of-bounds read (in the core interpreter) that can lead to ...

CVE-2021-2124310.0

OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, a Kubernetes REST endpoint exposes two methods that deser...