MEDIUM🇬🇧 English

CVE-2018-8900

CVSS 6.1v3.0pub. 2018-05-02upd. 2024-11-21

The License Manager service of HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTE 7.80 allows remote attackers to inject malicious web script in the logs page of Admin Control Center (ACC) for cross-site scripting (XSS) vulnerability.

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
  • Gemalto Sentinel Ldk Rte

    APP
    Gemalto
    < 7.80
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
XSS
CWE
Referencje

Powiązane podatności

CVE-2017-11496CRITICAL9.8ten sam produkt

Stack buffer overflow in hasplms in Gemalto ACC (Admin Control Center), all versions ranging from HASP SRM 2.1...

CVE-2017-11497CRITICAL9.8ten sam produkt

Stack buffer overflow in hasplms in Gemalto ACC (Admin Control Center), all versions ranging from HASP SRM 2.1...

CVE-2018-6304HIGH7.5ten sam produkt

Stack overflow in custom XML-parser in Gemalto's Sentinel LDK RTE version before 7.65 leads to remote denial o...

CVE-2018-6305HIGH7.5ten sam produkt

Denial of service in Gemalto's Sentinel LDK RTE version before 7.65

CVE-2017-11498HIGH7.5ten sam produkt

Buffer overflow in hasplms in Gemalto ACC (Admin Control Center), all versions ranging from HASP SRM 2.10 to S...