Dell Bsafe Crypto C Micro Edition
By the Year
In 2022 there have been 10 vulnerabilities in Dell Bsafe Crypto C Micro Edition with an average score of 9.4 out of ten. Bsafe Crypto C Micro Edition did not have any published security vulnerabilities last year. That is, 10 more vulnerabilities have already been reported in 2022 as compared to last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2022 | 10 | 9.40 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 4 | 6.85 |
2018 | 0 | 0.00 |
It may take a day or so for new Bsafe Crypto C Micro Edition vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Dell Bsafe Crypto C Micro Edition Security Vulnerabilities
Dell BSAFE Crypto-C Micro Edition
CVE-2020-29507
9.8 - Critical
- July 11, 2022
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.4, and Dell BSAFE Micro Edition Suite, versions before 4.4, contain an Improper Input Validation Vulnerability.
Improper Input Validation
Dell BSAFE Crypto-C Micro Edition
CVE-2020-29506
9.8 - Critical
- July 11, 2022
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain an Observable Timing Discrepancy Vulnerability.
Dell BSAFE Crypto-C Micro Edition
CVE-2020-29505
7.5 - High
- July 11, 2022
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain a Key Management Error Vulnerability.
Insufficient Entropy
Dell BSAFE Crypto-C Micro Edition
CVE-2020-35169
9.8 - Critical
- July 11, 2022
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain an Improper Input Validation Vulnerability.
Improper Input Validation
Dell BSAFE Crypto-C Micro Edition
CVE-2020-35166
9.8 - Critical
- July 11, 2022
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
Dell BSAFE Crypto-C Micro Edition
CVE-2020-35164
8.1 - High
- July 11, 2022
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
Dell BSAFE Crypto-C Micro Edition
CVE-2020-35163
9.8 - Critical
- July 11, 2022
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain a Use of Insufficiently Random Values Vulnerability.
Use of Insufficiently Random Values
Dell BSAFE Crypto-C Micro Edition
CVE-2020-29508
9.8 - Critical
- July 11, 2022
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Improper Input Validation Vulnerability.
Improper Input Validation
Dell BSAFE Crypto-C Micro Edition
CVE-2020-35168
9.8 - Critical
- July 11, 2022
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
Dell BSAFE Crypto-C Micro Edition
CVE-2020-35167
9.8 - Critical
- July 11, 2022
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
RSA BSAFE Crypto-C Micro Edition
CVE-2019-3733
4.9 - Medium
- September 30, 2019
RSA BSAFE Crypto-C Micro Edition, all versions prior to 4.1.4, is vulnerable to three (3) different Improper Clearing of Heap Memory Before Release vulnerability, also known as 'Heap Inspection vulnerability'. A malicious remote user could potentially exploit this vulnerability to extract information leaving data at risk of exposure.
Insufficient Cleanup
RSA BSAFE Crypto-C Micro Edition
CVE-2019-3732
7.5 - High
- September 30, 2019
RSA BSAFE Crypto-C Micro Edition, versions prior to 4.0.5.3 (in 4.0.x) and versions prior to 4.1.3.3 (in 4.1.x), and RSA Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) versions prior to 4.1.6.1 (in 4.1.x) and versions prior to 4.3.3 (4.2.x and 4.3.x) are vulnerable to an Information Exposure Through Timing Discrepancy. A malicious remote user could potentially exploit this vulnerability to extract information leaving data at risk of exposure.
Side Channel Attack
RSA BSAFE Crypto-C Micro Edition versions prior to 4.1.4 and RSA Micro Edition Suite versions prior to 4.4 are vulnerable to an Information Exposure Through Timing Discrepancy
CVE-2019-3731
7.5 - High
- September 30, 2019
RSA BSAFE Crypto-C Micro Edition versions prior to 4.1.4 and RSA Micro Edition Suite versions prior to 4.4 are vulnerable to an Information Exposure Through Timing Discrepancy. A malicious remote user could potentially exploit this vulnerability to extract information leaving data at risk of exposure.
Side Channel Attack
RSA BSAFE Crypto-C Micro Edition versions prior to 4.0.5.4 (in 4.0.x) and 4.1.4 (in 4.1.x) and RSA BSAFE Micro Edition Suite versions prior to 4.0.13 (in 4.0.x) and prior to 4.4 (in 4.1.x
CVE-2019-3728
7.5 - High
- September 30, 2019
RSA BSAFE Crypto-C Micro Edition versions prior to 4.0.5.4 (in 4.0.x) and 4.1.4 (in 4.1.x) and RSA BSAFE Micro Edition Suite versions prior to 4.0.13 (in 4.0.x) and prior to 4.4 (in 4.1.x, 4.2.x, 4.3.x) are vulnerable to a Buffer Over-read vulnerability when processing DSA signature. A malicious remote user could potentially exploit this vulnerability to cause a crash in the library of the affected system.
Out-of-bounds Read
EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x and 4.1.x before 4.1.5, RSA BSAFE Crypto-C Micro Edition (CCME) 4.0.x and 4.1.x before 4.1.3, RSA BSAFE Crypto-J before 6.2.1, RSA BSAFE SSL-J before 6.2.1, and RSA BSAFE SSL-C before 2.8.9 allow remote attackers to discover a private-key prime by conducting a Lenstra side-channel attack
CVE-2016-0887
5.9 - Medium
- April 12, 2016
EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x and 4.1.x before 4.1.5, RSA BSAFE Crypto-C Micro Edition (CCME) 4.0.x and 4.1.x before 4.1.3, RSA BSAFE Crypto-J before 6.2.1, RSA BSAFE SSL-J before 6.2.1, and RSA BSAFE SSL-C before 2.8.9 allow remote attackers to discover a private-key prime by conducting a Lenstra side-channel attack that leverages an application's failure to detect an RSA signature failure during a TLS session.
Information Disclosure
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Dell Bsafe Micro Edition Suite or by Dell? Click the Watch button to subscribe.
