Thales
Products
5- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
Recent CVEs
5| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-6805 | Hig | 0.49 | 7.5 | 0.00 | May 7, 2026 | Vulnerability on the external sharing feature in Cryptobox allows an attacker knowing a sharing link URL to retrieve information from the server allowing an offline brute-force attack of the access code associated to this sharing link. | ||
| CVE-2026-0872 | Low | 0.16 | — | 0.00 | Feb 13, 2026 | Improper Certificate Validation vulnerability in Thales SafeNet Agent for Windows Logon on Windows allows Signature Spoofing by Improper Validation.This issue affects SafeNet Agent for Windows Logon: 4.0.0, 4.1.1, 4.1.2. | ||
| CVE-2026-3457 | 0.00 | — | 0.00 | Mar 27, 2026 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Thales Sentinel LDK Runtime on Windows allows Stored XSS.This issue affects Sentinel LDK Runtime: before 10.22. | |||
| CVE-2024-5264 | 0.00 | — | 0.00 | May 23, 2024 | Network Transfer with AES KHT in Thales Luna EFT 2.1 and above allows a user with administrative console access to access backups taken via offline analysis | |||
| CVE-2022-1293 | 0.00 | — | 0.00 | Aug 2, 2022 | The embedded neutralization of Script-Related HTML Tag, was by-passed in the case of some extra conditions. |
- risk 0.49cvss 7.5epss 0.00
Vulnerability on the external sharing feature in Cryptobox allows an attacker knowing a sharing link URL to retrieve information from the server allowing an offline brute-force attack of the access code associated to this sharing link.
- risk 0.16cvss —epss 0.00
Improper Certificate Validation vulnerability in Thales SafeNet Agent for Windows Logon on Windows allows Signature Spoofing by Improper Validation.This issue affects SafeNet Agent for Windows Logon: 4.0.0, 4.1.1, 4.1.2.
- CVE-2026-3457Mar 27, 2026risk 0.00cvss —epss 0.00
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Thales Sentinel LDK Runtime on Windows allows Stored XSS.This issue affects Sentinel LDK Runtime: before 10.22.
- CVE-2024-5264May 23, 2024risk 0.00cvss —epss 0.00
Network Transfer with AES KHT in Thales Luna EFT 2.1 and above allows a user with administrative console access to access backups taken via offline analysis
- CVE-2022-1293Aug 2, 2022risk 0.00cvss —epss 0.00
The embedded neutralization of Script-Related HTML Tag, was by-passed in the case of some extra conditions.