Contact Us

Security Updates

Reporting a Security Vulnerability

If you think you have found a security vulnerability then please send it to the Gemalto Security Response Team (GSRT) [ PGP]. Any email sent to the response team that does not relate to a security vulnerability will be ignored. Non-security incidents can be entered at Gemalto Customer Portal.

Gray line  

Sentinel LDK Vulnerabilities

25 January 2018

In September 2017, Gemalto/SafeNet published notice advising Sentinel customers of vulnerabilities associated with the use of Sentinel LDK EMS server and License Manager services. These vulnerabilities may impact the confidentiality and integrity of the services if exploited.

This notice is to remind customers using these services to follow the mitigation guidelines outlined in the security bulletin at the following link: 20170626_1.

Gemalto would like to acknowledge Kaspersky for responsible disclosure of these vulnerabilities.

Gray line  

Meltdown & Spectre Vulnerabilities

Update 19 January 2018

The Gemalto Enterprise and Cybersecurity Security Team is continuing to investigate the impact of these vulnerabilities to our products and services, revising as more information is available. In general, if products/services employ a potentially vulnerable processor, security measures are in place to prevent exploitation of the vulnerabilities. Updated information may be found at: KB0017000.

Please continue to check this website where additional information will be posted as it becomes available.

Update 12 January 2018

The Gemalto Enterprise and Cybersecurity Security Team is continuing to investigate the impact of these vulnerabilities to our products and services, revising as more information is available. In general, if products/services employ a potentially vulnerable processor, security measures are in place to prevent exploitation of the vulnerabilities. Updated information may be found at: KB0017005

Please continue to check this website where additional information will be posted as it becomes available.

Update 09 January 2018

The Gemalto Enterprise and Cybersecurity Security Team has investigated the impact of these vulnerabilities to our products and services. In general, if products/services employ a potentially vulnerable processor, security measures are in place to prevent exploitation of the vulnerabilities. Further information is available at KB0017000.

Please continue to check this website where additional information will be posted as it becomes available.

04 January 2018

It has recently been announced that three vulnerabilities affected by two exploits known as Meltdown and Spectre are affecting modern processors. These vulnerabilities could allow unauthorized access to sensitive data as documented in CVE-2017-5715, CVE-2017-5753 and CVE-2017-5754.

Gemalto takes this issue very seriously and is investigating the impact of these vulnerabilities on our products and solutions. Gemalto CERT is also closely monitoring updated information related to patch availability. In parallel, we are coordinating a regular follow-up with our cloud service providers. We have set up a dedicated team of security experts to work on the situation and we will continue to monitor any developments.

Customers who have questions about these vulnerabilities should get in touch with their usual Gemalto Customer Support contact. Please continue to check this website where additional information will be posted as it becomes available.

Gray line  

Sentinel LDK Vulnerabilities

6 September 2017

Gemalto/SafeNet has identified vulnerabilities with the use of Sentinel LDK EMS server and License Manager services that may impact the confidentiality and integrity of the services if exploited. Customers using these services are advised to follow the mitigation guidelines outlined in security bulletins at the following links:

* We acknowledge Positive Technologies https://www.ptsecurity.com for responsible disclosure of these vulnerabilities.

Please contact customer support if you have difficulties with these links or have further questions or concerns.

 

Gray line  

Sentinel LDK License Manager Vulnerabilities

16 June 2017

Recent research reports identified vulnerabilities in Sentinel LDK License Manager services. The confidentiality and integrity of the files on the target system may be compromised if the vulnerability is exploited. Customers using this product are advised to contact customer support and/or follow the mitigation guidelines outlined in security bulletins at the following links:

 

 

Gray line  

Product specific advisories, software patches, or new software downloads for affected Gemalto Software Monetization products will be available in the Gemalto Customer Portal. Please continue to check regularly for updates or subscribe to specific product news feeds.

Back to Top

Contact Us

Thank you for your interest in our products. Please fill out and submit the form to receive more information about Gemalto or to be contacted by a Gemalto specialist.

Your Information

* Email Address:  
* First Name:  
* Last Name:  
* Company Name:  
* Phone:  
* Country:  
* State (US Only):  
* Province (Canada/Australia Only):  
Comments:  
 


By submitting this form I agree to receive information from Gemalto and its affiliates as described in our Privacy statement.