CVE-2026-0872

Severity CVSS v4.0:

LOW

Type:

CWE-295 Improper Certificate Validation

Publication date:

13/02/2026

Last modified:

13/02/2026

Description

Improper Certificate Validation vulnerability in Thales SafeNet Agent for Windows Logon on Windows allows Signature Spoofing by Improper Validation.This issue affects SafeNet Agent for Windows Logon: 4.0.0, 4.1.1, 4.1.2.

Impact

Vector 4.0

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:N/SC:H/SI:H/SA:L/E:P CVSS v4.0 Severity and Metrics:

Base Score: 2.50 LOW
Vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:N/SC:H/SI:H/SA:L/E:P

Attack Vector (AV): Network
Attack Complexity (AC): Low
Attack Requirements (AT): Present
Privileges Required (PR): Low
User Interaction (UI): None
Confidentiality (VC): Low
Integrity (VI): Low
Availability (VA): None
Confidentiality (SC): High
Integrity (SI): High
Availability (SA): Low
Exploit Maturity (E): POC

Base Score 4.0

2.50

Severity 4.0

LOW

CVE-2026-0872

Description

Impact

References to Advisories, Solutions, and Tools