rsa bsafe-cert-j CVE-2019-3740 vulnerability in Rsa and Other Products
Published on September 18, 2019

product logo product logo product logo product logo
RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to an Information Exposure Through Timing Discrepancy vulnerabilities during DSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover DSA keys.

NVD

Weakness Type

Cryptographic Issues

Weaknesses in this category are related to the design and implementation of data confidentiality and integrity. Frequently these deal with the use of encoding techniques, encryption libraries, and hashing algorithms. The weaknesses in this category could lead to a degradation of the quality data if they are not addressed.


Products Associated with CVE-2019-3740

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-3740 are published in these products:

Rsa Bsafe Cert J
 
Rsa Bsafe Crypto J
 
Rsa Bsafe Ssl J
 
Oracle Application Performance Management
 
Oracle Communications Unified Inventory Management
 
Oracle Database Server
 
Oracle Global Lifecycle Management Opatch
 
Oracle Goldengate
 
Oracle Retail Assortment Planning
 
Oracle Retail Integration Bus
 
Oracle Retail Predictive Application Server
 
Oracle Retail Service Backbone
 
Oracle Retail Store Inventory Management
 
Oracle Retail Xstore Point Of Service
 
Oracle Storagetek Tape Analytics Sw Tool
 
Oracle Weblogic Server
 
Dell Bsafe Ssl J
 
Dell Bsafe Crypto J
 
Dell Bsafe Cert J
 
Oracle Communications Network Integrity
 
Oracle Storagetek Acsls
 

Affected Versions

Dell RSA BSAFE Crypto-J Version prior to 6.2.5 is affected by CVE-2019-3740

Exploit Probability

EPSS
1.24%
Percentile
78.90%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.