Thales · Thales Sentinel Ldk Runtime · CVE-2026-3457
**Name of the Vulnerable Software and Affected Versions**
Thales Sentinel LDK Runtime versions prior to 10.22
**Description**
The software contains an Improper Neutralization of Input During Web Page Generation issue, which allows for Stored Cross-site Scripting (XSS). This means that malicious scripts can be injected into web pages viewed by other users. The issue affects the software on Windows systems.
**Recommendations**
Update Thales Sentinel LDK Runtime to version 10.22 or later.