Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Thales — Vulnerabilities & Security Advisories 11

Browse all 11 CVE security advisories affecting Thales. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Thales provides cybersecurity solutions and digital identity services, focusing on securing critical infrastructure and data. Historically, vulnerabilities in their products have included remote code execution, cross-site scripting, and privilege escalation, often stemming from improper input validation and access control flaws. While no major public security incidents have been widely reported, the 11 CVEs on record highlight ongoing challenges in securing complex enterprise systems. Their solutions typically emphasize encryption and secure authentication, though implementation complexities can introduce security gaps. Organizations using Thales products should prioritize timely patching and configuration hardening to mitigate potential risks.

Top products by Thales: Sentinel Protection Installer SafeNet Authentication Client SafeNet Authentication Service Citadel Web Client SafeNet Authtentication Service Agent Sentinel HASP LDK Luna EFT SafeNet Agent for Windows Logon Sentinel LDK Runtime
CVE IDTitleCVSSSeverityPublished
CVE-2026-3457 Stored XSS vulnerability in Sentinel ACC — Sentinel LDK RuntimeCWE-79 5.4 -2026-03-27
CVE-2026-0872 Improper Certificate Validation vulnerability in Thales SafeNet Agent for Windows Logon — SafeNet Agent for Windows LogonCWE-295 7.5AIHighAI2026-02-13
CVE-2024-5264 Network Key Transfer with AES KHT vulnerability in Luna EFT — Luna EFTCWE-338 5.9 Medium2024-05-23
CVE-2024-0197 Privilege Escalation in Thales SafeNet Sentinel HASP LDK — Sentinel HASP LDKCWE-269 7.8 High2024-02-27
CVE-2023-7016 Privilege Escalation in SafeNet Authentication Client — SafeNet Authentication ClientCWE-269 7.8 High2024-02-27
CVE-2023-5993 Privilege Escalation in SafeNet Authentication Client Installer — SafeNet Authentication ClientCWE-269 7.8 High2024-02-27
CVE-2023-2737 Improper securing of log directory may allow a denial of service — SafeNet Authtentication Service AgentCWE-276 5.7 Medium2023-08-16
CVE-2022-1293 XSS vulnerability in Citadel — Citadel Web ClientCWE-80 5.7 Medium2022-08-02
CVE-2021-42810 Safenet Authentication Service Remote Desktop Gateway prior to 2.0.3 may allow privilege escilation to authenticated users — SafeNet Authentication ServiceCWE-336 7.8 High2022-01-19
CVE-2021-42808 The Sentinel Protection Installer 7.7.0 creates files and directory with all privileges granting any user full permissions. — Sentinel Protection InstallerCWE-284 6.5 Medium2021-12-20
CVE-2021-42809 The Sentinel Protection Installer 7.7.0 does not properly restrict loading Dynamic Link Library — Sentinel Protection InstallerCWE-913 6.5 Medium2021-12-20

This page lists every published CVE security advisory associated with Thales. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.