PT-2024-15179 · Thales · Thales Safenet Authentication Client
Published
2024-02-27
·
Updated
2024-02-27
·
CVE-2023-7016
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Thales SafeNet Authentication Client versions prior to 10.8 R10
Description
A flaw in the software allows an attacker to execute code at a SYSTEM level via local access on Windows.
Recommendations
For versions prior to 10.8 R10, update to version 10.8 R10 or later to resolve the issue.
As a temporary workaround, consider restricting local access to the system until a patch is applied.
Fix
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Thales Safenet Authentication Client