ByteOS Network

Vulnerability Details :

CVE-2021-42810

Assigner Org ID-9d5917ae-205d-4ae5-8749-1f49479b1395

Published At-19 Jan, 2022 | 17:12

Updated At-17 Sep, 2024 | 01:41

Safenet Authentication Service Remote Desktop Gateway prior to 2.0.3 may allow privilege escilation to authenticated users

A flaw in the previous versions of the product may allow an authenticated attacker the ability to execute code as a privileged user on a system where the agent is installed.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:THA-PSIRT

Assigner Org ID:9d5917ae-205d-4ae5-8749-1f49479b1395

Published At:19 Jan, 2022 | 17:12

Updated At:17 Sep, 2024 | 01:41

▼CVE Numbering Authority (CNA)

Safenet Authentication Service Remote Desktop Gateway prior to 2.0.3 may allow privilege escilation to authenticated users

A flaw in the previous versions of the product may allow an authenticated attacker the ability to execute code as a privileged user on a system where the agent is installed.

Affected Products

Vendor

Thales

Product

SafeNet Authentication Service

Versions

Affected

From Remote Desktop Gateway before 2.0.3 (custom)

Problem Types

Type	CWE ID	Description
CWE	CWE-336	CWE-336: Same Seed in Pseudo-Random Number Generator (PRNG)

Type: CWE

CWE ID: CWE-336

Description: CWE-336: Same Seed in Pseudo-Random Number Generator (PRNG)

Metrics

Version	Base score	Base severity	Vector
3.1	7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Version: 3.1

Base score: 7.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Solutions

Update Safenet Authentication Service Remote Desktop Gateway to version 2.0.3 or newer.

Credits

Ronnie Salomonsen, Mandiant

References

Hyperlink	Resource
https://cpl.thalesgroup.com/support/security-updates	x_refsource_MISC
https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0002/MNDT-2022-0002.md	x_refsource_MISC

Hyperlink: https://cpl.thalesgroup.com/support/security-updates

Resource:

x_refsource_MISC

Hyperlink: https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0002/MNDT-2022-0002.md

Resource:

x_refsource_MISC

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://cpl.thalesgroup.com/support/security-updates	x_refsource_MISC x_transferred
https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0002/MNDT-2022-0002.md	x_refsource_MISC x_transferred

Hyperlink: https://cpl.thalesgroup.com/support/security-updates

Resource:

x_refsource_MISC

x_transferred

Hyperlink: https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0002/MNDT-2022-0002.md

Resource:

x_refsource_MISC

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:psirt@thalesgroup.com

Published At:19 Jan, 2022 | 18:15

Updated At:25 Jan, 2022 | 21:08

A flaw in the previous versions of the product may allow an authenticated attacker the ability to execute code as a privileged user on a system where the agent is installed.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Secondary	3.1	7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary	2.0	7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C

Type: Primary

Version: 3.1

Base score: 7.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Type: Secondary

Version: 3.1

Base score: 7.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Type: Primary

Version: 2.0

Base score: 7.2

Base severity: HIGH

Vector:

AV:L/AC:L/Au:N/C:C/I:C/A:C

CPE Matches

thalesgroup>>safenet_authentication_service_remote_desktop_gateway>>Versions up to 2.0.3(inclusive)

cpe:2.3:a:thalesgroup:safenet_authentication_service_remote_desktop_gateway:*:*:*:*:*:windows:*:*

Weaknesses

CWE ID	Type	Source
CWE-335	Primary	nvd@nist.gov
CWE-336	Secondary	psirt@thalesgroup.com

CWE ID: CWE-335

Type: Primary

Source: nvd@nist.gov

CWE ID: CWE-336

Type: Secondary

Source: psirt@thalesgroup.com

References

Hyperlink	Source	Resource
https://cpl.thalesgroup.com/support/security-updates	psirt@thalesgroup.com	Release Notes Vendor Advisory
https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0002/MNDT-2022-0002.md	psirt@thalesgroup.com	Third Party Advisory

Hyperlink: https://cpl.thalesgroup.com/support/security-updates

Source: psirt@thalesgroup.com

Resource:

Release Notes

Vendor Advisory

Hyperlink: https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0002/MNDT-2022-0002.md

Source: psirt@thalesgroup.com

Resource:

Third Party Advisory

Similar CVEs

3Records found

CVE-2021-42808

Matching Score-8

Assigner-Thales Group

View Details

Matching Score-8

Assigner-Thales Group

CVSS Score-6.5||MEDIUM

EPSS-0.03% / 6.85%

7 Day CHG~0.00%

Published-20 Dec, 2021 | 20:19

Updated-04 Aug, 2024 | 03:38

The Sentinel Protection Installer 7.7.0 creates files and directory with all privileges granting any user full permissions.

Improper Access Control in Thales Sentinel Protection Installer could allow a local user to escalate privileges.

Vendor-thalesgroup Thales Microsoft Corporation

Product-windows sentinel_protection_installer Sentinel Protection Installer

CWE ID-CWE-284

Improper Access Control

CVE-2021-42056

Matching Score-8

Assigner-MITRE Corporation

View Details

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-6.7||MEDIUM

EPSS-2.34% / 84.22%

7 Day CHG~0.00%

Published-24 Jun, 2022 | 16:14

Updated-04 Aug, 2024 | 03:22

Thales Safenet Authentication Client (SAC) for Linux and Windows through 10.7.7 creates insecure temporary hid and lock files allowing a local attacker, through a symlink attack, to overwrite arbitrary files, and potentially achieve arbitrary command execution with high privileges.

Vendor-thalesgroup n/a Linux Kernel Organization, Inc Microsoft Corporation

Product-windows linux_kernel safenet_authentication_client n/a

CWE ID-CWE-59

Improper Link Resolution Before File Access ('Link Following')

CVE-2023-49343

Matching Score-4

Assigner-Canonical Ltd.

View Details

Matching Score-4

Assigner-Canonical Ltd.

CVSS Score-6||MEDIUM

EPSS-0.06% / 17.21%

7 Day CHG~0.00%

Published-14 Dec, 2023 | 21:31

Updated-02 Aug, 2024 | 21:53

Temporary data passed between application components by Budgie Extras Dropby applet could potentially be viewed or manipulated. The data is stored in a location that is accessible to any user who has local access to the system. Attackers may pre-create and control this file to present false information to users or deny access to the application and panel.

Vendor-ubuntubudgie Ubuntu Budgie

Product-budgie_extras Budgie Extras

CWE ID-CWE-337

Predictable Seed in Pseudo-Random Number Generator (PRNG)

CWE ID-CWE-668

Exposure of Resource to Wrong Sphere

CWE ID-CWE-335

Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)

CVE-2021-42810

Credits

Safenet Authentication Service Remote Desktop Gateway prior to 2.0.3 may allow privilege escilation to authenticated users

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs