CVE-2017-12819

Name of the Vulnerable Software and Affected Versions Sentinel LDK versions prior to 7.55 HASP SRM versions prior to 7.55 Sentinel HASP versions prior to 7.55

Description The issue allows remote manipulations with the language pack updater, leading to an NTLM-relay attack for the system user. This affects Gemalto's HASP SRM, Sentinel HASP, and Sentinel LDK products.

Recommendations For versions prior to Sentinel LDK RTE version 7.55, update to version 7.55 or later to resolve the issue. As a temporary workaround, consider restricting access to the language pack updater until a patch is available. Avoid using the NTLM authentication protocol in sensitive environments until the issue is resolved.