KISA warns that SGA Solutions' discontinued TrustPKI Enterprise product contains a vulnerability caused by insufficient verification. The advisory instructs organizations and users to remove the product immediately if it is installed on PCs because the product has reached end of service. The excerpt does not provide threat-actor attribution, exploitation details, malware, or DPRK-specific targeting, so the supported finding is a Korean public-sector security advisory about exposure from legacy PKI software. The notice matters for defenders because unsupported authentication or PKI components can remain deployed after end-of-life and create avoidable intrusion risk.