The investigation of impact of this vulnerability in Thales TCT product portfolio is continuing and will be updated as results are available. We can confirm that products such as the Luna Network HSMs appliances and clients, CipherTrust Manager are not vulnerable. Cloud Security services such as STA Classic had mitigations deployed immediately and is not vulnerable to this CVE. More details are available through Thales TCT’s support portal.
*The link above requires access to Thales TCT’s support portal.