← Back to home
ICSA-21-159-06  ·  Published 2021-06-08  ·  View on CISA ICS-CERT ↗

Thales Sentinel LDK Run-Time Environment

CVSS 9.6 CRITICAL

Risk Summary

Products that have uninstalled software using the Sentinel LDK Run-Time Environment, may have a port left open that may allow an attacker to connect.

CVEs (1)

Remediations

  • Thales recommends vendors and users to upgrade to RTE Version 8.15 or later.
  • If uninstalling with affected version, ensure “purge option” is selected. The purge option removes the Sentinel License Manager and closes the port.
  • Ensure TCP Port 1947 is closed.
  • If possible, implement appropriate IDS/IPS measures against TCP Port 1947
  • Halliburton GOHFER: Update to Version 9.1.3.57 thru 9.2.x.xx and when uninstalling select the purge option. Upon uninstalling, the purge option removes the Sentinel License Manager and closes the port. Subsequent versions of GOHFER will no longer use Sentinel LDK.

Affected Vendors

Thales

Affected Products (1)

Thales · Sentinel LDK Run-Time Environment <= 7.6

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more