Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Network Key Transfer with AES KHT vulnerability in Luna EFT
Vulnerability Description
Network Transfer with AES KHT in Thales Luna EFT 2.1 and above allows a user with administrative console access to access backups taken via offline analysis
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
使用具有密码学弱点缺陷的PRNG
Vulnerability Title
Thales Luna EFT 安全漏洞
Vulnerability Description
Thales Luna EFT是法国泰雷兹(Thales)公司的一款专门针对金融交易和支付处理设计的高安全性硬件安全模块。 Thales Luna EFT 2.1版本存在安全漏洞,该漏洞源于使用AES KHT的网络传输允许用户访问通过离线分析获取的备份。
CVSS Information
N/A
Vulnerability Type
N/A