CVE-2018-11055 vulnerability in EMC and Other Products
Published on August 31, 2018

RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6.1 (in 4.1.x), contains an Improper Clearing of Heap Memory Before Release ('Heap Inspection') vulnerability. Decoded PKCS #12 data in heap memory is not zeroized by MES before releasing the memory internally and a malicious local user could gain access to the unauthorized data by doing heap inspection.

NVD

Products Associated with CVE-2018-11055

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-11055 are published in these products:

EMC Rsa Bsafe

Dell Bsafe

Oracle Application Testing Suite

Oracle Communications Analytics

Oracle Communications Ip Service Activator

Oracle Core Rdbms

Oracle Enterprise Manager Ops Center

Oracle Goldengate Application Adapters

Oracle Jd Edwards Enterpriseone Tools

Oracle Real User Experience Insight

Oracle Retail Predictive Application Server

Oracle Security Service

Oracle Timesten In Memory Database

Affected Versions

RSA BSAFE Micro Edition Suite:

Version unspecified and below 4.0.11 is affected.
Version unspecified and below 4.1.6.1 is affected.

Exploit Probability

EPSS

0.09%

Percentile

25.56%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-11055 vulnerability in EMC and Other ProductsPublished on August 31, 2018

Products Associated with CVE-2018-11055

Affected Versions

Exploit Probability

CVE-2018-11055 vulnerability in EMC and Other Products
Published on August 31, 2018