Vulnerabilities > CVE-2021-42809 - Improper Control of Dynamically-Managed Code Resources vulnerability in Thalesgroup Sentinel Protection Installer 7.7.0

CVSS 6.9 - MEDIUM

Attack vector

LOCAL

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

thalesgroup

CWE-913

NVD

Published: 2021-12-20

Updated: 2022-01-04

Summary

Improper Access Control of Dynamically-Managed Code Resources (DLL) in Thales Sentinel Protection Installer could allow the execution of arbitrary code.

Vulnerable Configurations

Part	Description	Count
Application	Thalesgroup Thalesgroup Sentinel Protection Installer 7.7.0	1
OS	Microsoft Microsoft Windows -	1

Common Weakness Enumeration (CWE)

CWE-913 - Improper Control of Dynamically-Managed Code Resources

References

https://cpl.thalesgroup.com/fr/software-monetization/security-updates