Privilege Escalation Vulnerability

utimaco LAN V5 3Utimaco has been made aware of a vulnerability affecting the Windows installations of some of our products.

This vulnerability could allow for an attacker to escalate Windows privileges from a standard “Authenticated User” to that of an Administrator or SYSTEM. The firmware of your Hardware Security Modules is not affected though.

Please consult the linked advisory for the details of this vulnerability, and check whether you are affected. We have published an updated SecurityServer product CD and a patch in our support portal under Support -> Downloads. Login to the support portal is required.

Download Security Advisory Document

Download HotFix Patch

This issue has been reserved in the Common Vulnerabilities and Exposures list as CVE-2020-26155. It will be published end of January 2021. Do not disclose this vulnerability before its publication on the CVE website to give all affected customers due time for fixing their installations.

News

Privilege Escalation Vulnerability

utimaco LAN V5 3Utimaco has been made aware of a vulnerability affecting the Windows installations of some of our products.

Read more ...

Utimaco on RISK Conference 2020

Utimaco presentation RISK 2020Utimaco is going to attend the RISK conference 2020 with a presentation "Trust the NEXT Digital Era".

Read more ...

CREAplus Successfully Delivered Training for Utimaco HSM

utimaco LAN V5 4CREAplus, authorized Utimaco training partner, successfully delivered another Utimaco Academy 2-day online hands-on technical training on Utimaco hardware security module (HSM), in November 2020.

Read more ...

Blog: NIST’s Standardisation of PQC

graph data breachesBlog post: The World of Quantum Computing - NIST’s Standardisation of PQCCybersecurity 

Blog: Zerologon Vulnerability

graph data breachesBlog post: Cybersecurity - Zerologon Vulnerability