Dell

Bsafe Ssl-j

21 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2024-29172

  • EPSS 0.05%
  • Veröffentlicht 12.02.2025 02:15:10
  • Zuletzt bearbeitet 19.03.2025 15:18:36

Dell BSAFE SSL-J, versions prior to 6.6 and versions 7.0 through 7.2, contains a deadlock vulnerability. A remote attacker could potentially exploit this vulnerability, leading to a Denial of Service.

7.5

CVE-2024-29171

  • EPSS 0.02%
  • Veröffentlicht 12.02.2025 02:15:10
  • Zuletzt bearbeitet 19.03.2025 15:16:39

Dell BSAFE SSL-J, versions prior to 6.6 and versions 7.0 through 7.2, contains an Improper certificate verification vulnerability. A remote attacker could potentially exploit this vulnerability, leading to information disclosure.

4.4

CVE-2023-28077

  • EPSS 0.04%
  • Veröffentlicht 10.02.2024 03:15:07
  • Zuletzt bearbeitet 21.11.2024 07:54:21

Dell BSAFE SSL-J, versions prior to 6.5, and versions 7.0 and 7.1 contain a debug message revealing unnecessary information vulnerability. This may lead to disclosing sensitive information to a locally privileged user.

9.8

CVE-2022-34381

  • EPSS 0.63%
  • Veröffentlicht 02.02.2024 16:15:45
  • Zuletzt bearbeitet 21.11.2024 07:09:23

Dell BSAFE SSL-J version 7.0 and all versions prior to 6.5, and Dell BSAFE Crypto-J versions prior to 6.2.6.1 contain an unmaintained third-party component vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerabilit...

4.4

CVE-2022-34364

  • EPSS 0.04%
  • Veröffentlicht 10.02.2023 20:15:52
  • Zuletzt bearbeitet 21.11.2024 07:09:21

Dell BSAFE SSL-J, versions before 6.5 and version 7.0 contain a debug message revealing unnecessary information vulnerability. This may lead to disclosing sensitive information to a locally privileged user. .

7.5

CVE-2022-24409

  • EPSS 0.75%
  • Veröffentlicht 23.02.2022 22:15:07
  • Zuletzt bearbeitet 21.11.2024 06:50:21

Dell BSAFE SSL-J contains remediation for a covert timing channel vulnerability that may be exploited by malicious users to compromise the affected system. Only customers with active BSAFE maintenance contracts can receive details about this vulnerab...

6.5

CVE-2019-3740

  • EPSS 1.24%
  • Veröffentlicht 18.09.2019 23:15:11
  • Zuletzt bearbeitet 21.11.2024 04:42:26

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to an Information Exposure Through Timing Discrepancy vulnerabilities during DSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover DSA keys...

6.5

CVE-2019-3739

  • EPSS 1.24%
  • Veröffentlicht 18.09.2019 23:15:11
  • Zuletzt bearbeitet 21.11.2024 04:42:26

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to Information Exposure Through Timing Discrepancy vulnerabilities during ECDSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover ECDSA key...

6.5

CVE-2019-3738

  • EPSS 0.97%
  • Veröffentlicht 18.09.2019 23:15:11
  • Zuletzt bearbeitet 21.11.2024 04:42:26

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to a Missing Required Cryptographic Step vulnerability. A malicious remote attacker could potentially exploit this vulnerability to coerce two parties into computing the same predictable share...

4.6

CVE-2018-11068

  • EPSS 0.08%
  • Veröffentlicht 11.09.2018 19:29:01
  • Zuletzt bearbeitet 21.11.2024 03:42:36

RSA BSAFE SSL-J versions prior to 6.2.4 contain a Heap Inspection vulnerability that could allow an attacker with physical access to the system to recover sensitive key material.