Entrust CVE - OpenCVE

Filtered by vendor Entrust Subscribe

Total 5 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2007-4594	1 Entrust	1 Entelligence Security Provider	2024-02-28	6.4 MEDIUM	N/A
Entrust Entelligence Security Provider (ESP) 8 does not properly validate certificates in certain circumstances involving (1) a chain that omits the root Certification Authority (CA) certificate, or an application that specifies disregarding (2) unknown revocation statuses during path validation or (3) certain errors in the certification path, which might allow context-dependent attackers to spoof certificate authentication. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2001-1024	1 Entrust	1 Getaccess	2024-02-28	7.5 HIGH	N/A
login.gas.bat and other CGI scripts in Entrust getAccess allow remote attackers to execute Java programs, and possibly arbitrary commands, by specifying an alternate -classpath argument.
CVE-2001-0853	1 Entrust	1 Getaccess	2024-02-28	5.0 MEDIUM	N/A
Directory traversal vulnerability in Entrust GetAccess allows remote attackers to read arbitrary files via a .. (dot dot) in the locale parameter to (1) helpwin.gas.bat or (2) AboutBox.gas.bat.
CVE-2002-0712	1 Entrust	1 Entrust Authority Security Manager	2024-02-28	2.1 LOW	N/A
Entrust Authority Security Manager (EASM) 6.0 does not properly require multiple master users to change the password of a master user, which could allow a master user to perform operations that require multiple authorizations.
CVE-2004-0369	2 Entrust, Symantec	5 Entrust Libkmp Isakmp Library, Enterprise Firewall, Gateway Security 5300 and 2 more	2024-02-28	7.5 HIGH	N/A
Buffer overflow in Entrust LibKmp ISAKMP library, as used by Symantec Enterprise Firewall 7.0 through 8.0, Gateway Security 5300 1.0, Gateway Security 5400 2.0, and VelociRaptor 1.5, allows remote attackers to execute arbitrary code via a crafted ISAKMP payload.

Vulnerabilities (CVE)