CVE-2019-18232
N/A
N/A
Summary
SafeNet Sentinel LDK License Manager, all versions prior to 7.101(only Microsoft Windows versions are affected) is vulnerable when configured as a service. This vulnerability may allow an attacker with local access to create, write, and/or delete files in system folder using symbolic links, leading to a privilege escalation. This vulnerability could also be used by an attacker to execute a malicious DLL, which could impact the integrity and availability of the system.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | SafeNet Sentinel LDK License Manager Runtime | All versions prior to 7.101(only Microsoft Windows versions are affected) | affected |
Weaknesses
- CWE-59: IMPROPER LINK RESOLUTION BEFORE FILE ACCESS ('LINK FOLLOWING') CWE-59
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.