Vulnerability CVE-2021-22897 and CVE-2021-22898 with libCurl in HASP components

Vulnerability CVE-2021-22897 and CVE-2021-22898 with libCurl in HASP components

Question

Is HASP driver/DLL's run time Enviroimnet v8.21 affected by the below-mentioned vulnerabilities?

https://nvd.nist.gov/vuln/detail/CVE-2021-22897

https://nvd.nist.gov/vuln/detail/CVE-2021-22898

Answer:

Based on inputs from the HASP engineering team, in the run time environment v8.23 they have removed the dependency of Curl so HASP components will not be impacted by CVE-2021-22897 and CVE-2021-22898.

So, FNP11.18.3.0 will have the upgraded Safenet dongle drivers v8.23 since the reported vulnerabilities are fixed. Safenet is no longer using libcurl.

 

 

Was this article helpful? Yes No
No ratings
Version history
Revision #:
1 of 1
Last update:
‎Sep 23, 2021 04:17 AM
Updated by:
 
Contributors