CVE-2026-3457

UNKNOWN 0.0

Stored XSS vulnerability in Sentinel ACC

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

6th

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Thales Sentinel LDK Runtime on Windows allows Stored XSS.This issue affects Sentinel LDK Runtime: before 10.22.

CWE	CWE-79
Vendor	thales
Product	sentinel ldk runtime
Published	Mar 27, 2026
Last Updated	Mar 27, 2026

Stay Ahead of the Next One

Get instant alerts for thales sentinel ldk runtime

Be the first to know when new unknown vulnerabilities affecting thales sentinel ldk runtime are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Thales / Sentinel LDK Runtime

0 < 10.22

References

NVD ↗ CVE.org ↗ EPSS Data ↗

supportportal.thalesgroup.com: https://supportportal.thalesgroup.com/csm?id=kb_article_view&sys_kb_id=5c18186b478aa950128dca72e36d4391&sysparm_article=KB0027106

Credits

Josh Dillon