PT-2021-23556 · Safenet · Safenet Agent For Windows Logon

Compass-Security

Published

2021-12-20

Updated

2022-01-03

CVE-2021-42138

CVSS v3.1

7.2

High

Vector

AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions SafeNet Agent for Windows Logon (affected versions not specified)

Description A user of a machine protected by SafeNet Agent for Windows Logon may leverage weak entropy to access the encrypted credentials of any or all the users on that machine.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-331

Related Identifiers

CVE-2021-42138

Affected Products

Safenet Agent For Windows Logon

PT-2021-23556 · Safenet · Safenet Agent For Windows Logon

CVE-2021-42138

Weakness Enumeration

Related Identifiers

Affected Products

References · 5