cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-28074,https://securityvulnerability.io/vulnerability/CVE-2023-28074,Buffer Over-Read Vulnerability in Dell BSAFE Crypto-C Micro Edition and Related Products,"A vulnerability exists in the Dell BSAFE Crypto-C Micro Edition, version 4.1.5, and the Dell BSAFE Micro Edition Suite, comprising versions 4.0 to 4.6.1 and version 5.0, that allows for out-of-bounds read attacks. This security weakness can be exploited by an attacker who has local access, creating a potential risk for sensitive information exposure. Proper security updates are essential for users of these products to safeguard against unauthorized information access.",Dell,"Dell Bsafe Micro Edition Suite,Dell Bsafe Crypto-c Micro Edition",7.1,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-07-31T07:56:01.652Z,0
CVE-2020-35165,https://securityvulnerability.io/vulnerability/CVE-2020-35165,Observable Timing Discrepancy Vulnerability Affects Dell's BSAFE Crypto-C Micro Edition,"The vulnerability present in Dell BSAFE Crypto-C Micro Edition and BSAFE Micro Edition Suite manifests as an observable timing discrepancy, which can allow an attacker to infer sensitive information based on the timing variations in cryptographic operations. This flaw may lead to the exposure of cryptographic keys or other critical data, thereby compromising sensitive data integrity and confidentiality. Users are urged to update to the latest versions to mitigate potential security risks associated with this vulnerability.",Dell,"Dell Bsafe Crypto-c Micro Edition,Dell Bsafe Micro Edition Suite",5.1,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-22T05:56:50.088Z,0
CVE-2023-28077,https://securityvulnerability.io/vulnerability/CVE-2023-28077,Debug Message Reveals Unnecessary Information Vulnerability in Dell BSAFE SSL-J,"A vulnerability exists in Dell BSAFE SSL-J that allows the disclosure of unnecessary information through a debug message. This issue affects versions prior to 6.5 and versions 7.0 and 7.1. A locally privileged user could exploit this vulnerability to access sensitive information, posing potential security risks to the integrity of the system. Organizations using these affected versions should apply the necessary security updates to mitigate risks associated with this vulnerability.",Dell,Dell Bsafe Ssl-j,4.4,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-02-10T03:11:28.614Z,0
CVE-2020-29504,https://securityvulnerability.io/vulnerability/CVE-2020-29504,Missing Required Cryptographic Step in Dell BSAFE Products,"Dell BSAFE Crypto-C Micro Edition and BSAFE Micro Edition Suite have a vulnerability due to the absence of a necessary cryptographic step in their operations. This flaw could potentially compromise the security measures intended to protect sensitive data processed by these products. Affected versions prior to 4.1.5 for Crypto-C Micro Edition and before 4.5.2 for the Micro Edition Suite are particularly susceptible, emphasizing the importance of ensuring that users apply updates to mitigate risks associated with this vulnerability. Affected users are encouraged to review security advisories and update to the latest versions to maintain optimal security.",Dell,"Bsafe Crypto-c Micro Edition,Dell Bsafe Micro Edition Suite",7.4,HIGH,0.0010499999625608325,false,,false,false,false,,,false,false,,2024-02-02T15:58:57.404Z,0
CVE-2021-21575,https://securityvulnerability.io/vulnerability/CVE-2021-21575,Observable Timing Discrepancy Vulnerability in Dell BSAFE Micro Edition Suite,"The BSAFE Micro Edition Suite by Dell exhibits an observable timing discrepancy vulnerability. This issue may allow an attacker to infer information based on the timing variations in responses, potentially compromising sensitive data. Versions prior to 4.5.2 are particularly affected, leading to risks associated with the integrity and confidentiality of sensitive applications that rely on this suite.",Dell,Bsafe Micro Edition Suite,5.9,MEDIUM,0.0010499999625608325,false,,false,false,false,,,false,false,,2024-02-02T15:53:52.071Z,0
CVE-2022-34381,https://securityvulnerability.io/vulnerability/CVE-2022-34381,Unmaintained Third-Party Component Vulnerability in Dell BSAFE SSL-J and Crypto-J,"An unmaintained third-party component found in Dell BSAFE SSL-J versions 7.0 and previous versions up to 6.5, alongside Dell BSAFE Crypto-J versions earlier than 6.2.6.1, poses a significant security vulnerability. This flaw allows an unauthenticated remote attacker the potential to exploit the vulnerability, which can lead to serious compromise of affected systems. Users of these products are strongly recommended to upgrade to the secure versions to mitigate associated risks. For more details on the remediation, refer to Dell's security advisory.",Dell,"Dell Bsafe Crypto-j,Dell Bsafe Ssl-j",9.1,CRITICAL,0.0017999999690800905,false,,false,false,false,,,false,false,,2024-02-02T15:30:23.697Z,0
CVE-2022-34364,https://securityvulnerability.io/vulnerability/CVE-2022-34364,Information Disclosure Vulnerability in Dell BSAFE SSL-J,"The vulnerability in Dell BSAFE SSL-J arises when the software operates in debug mode, potentially disclosing sensitive information. This flaw can be exploited by attackers to gain access to otherwise protected data, heightening the risk of privacy violations and unauthorized access. It is essential for users of BSAFE SSL-J to be aware of this issue and take necessary precautions to secure their environments.",Dell,Bsafe Ssl-j,4.4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-02-10T19:13:42.880Z,0
CVE-2020-35167,https://securityvulnerability.io/vulnerability/CVE-2020-35167,Timing Discrepancy Vulnerability in Dell BSAFE Crypto-C Micro Edition and Suite,Dell BSAFE Crypto-C Micro Edition prior to version 4.1.5 and Dell BSAFE Micro Edition Suite prior to version 4.6 exhibit an Observable Timing Discrepancy Vulnerability. This flaw can potentially allow attackers to infer sensitive information by analyzing the time taken to respond to certain cryptographic operations. Organizations using these products are advised to update to the latest versions to mitigate the risk posed by this vulnerability.,Dell,Dell Bsafe Crypto-c Micro Edition,4.8,MEDIUM,0.001820000004954636,false,,false,false,false,,,false,false,,2022-07-11T20:15:00.000Z,0
CVE-2020-29508,https://securityvulnerability.io/vulnerability/CVE-2020-29508,Improper Input Validation in Dell BSAFE Crypto-C Micro Edition and Micro Edition Suite,"The Dell BSAFE Crypto-C Micro Edition and Micro Edition Suite prior to specified versions are susceptible to an improper input validation vulnerability. This flaw allows attackers to manipulate input data, potentially leading to unexpected behavior or exposure of sensitive information. It is crucial for users of affected products to apply the latest updates to mitigate potential risks. For detailed guidance, please refer to Dell's support documentation.",Dell,Dell Bsafe Micro Edition Suite,5.3,MEDIUM,0.0016599999507889152,false,,false,false,false,,,false,false,,2022-07-11T20:15:00.000Z,0
CVE-2020-35164,https://securityvulnerability.io/vulnerability/CVE-2020-35164,Observable Timing Discrepancy in Dell BSAFE Crypto-C Micro Edition,"Dell BSAFE Crypto-C Micro Edition versions prior to 4.1.5 and BSAFE Micro Edition Suite versions prior to 4.6 contain a vulnerability that manifests as an observable timing discrepancy. This flaw can potentially be exploited by attackers to gain insights into sensitive information or cryptographic operations, thereby compromising the security integrity of the affected systems. It is vital for organizations using these products to update to the patched versions to mitigate any security risks.",Dell,Dell Bsafe Crypto-c Micro Edition,6.7,MEDIUM,0.001820000004954636,false,,false,false,false,,,false,false,,2022-07-11T20:15:00.000Z,0
CVE-2020-35166,https://securityvulnerability.io/vulnerability/CVE-2020-35166,Observable Timing Discrepancy in Dell BSAFE Crypto-C Micro Edition and Micro Edition Suite,"The Dell BSAFE Crypto-C Micro Edition and the Dell BSAFE Micro Edition Suite are vulnerable due to observable timing discrepancies, which may allow an attacker to gain information about sensitive data. This vulnerability affects versions before 4.1.5 of the Crypto-C Micro Edition and versions prior to 4.6 of the Micro Edition Suite, potentially enabling unauthorized access or manipulation of cryptographic processes.",Dell,"Bsafe Crypto-c Micro Edition,Dell Bsafe Micro Edition Suite",9.8,CRITICAL,0.0018400000408291817,false,,false,false,false,,,false,false,,2022-07-11T20:15:00.000Z,0
CVE-2020-35169,https://securityvulnerability.io/vulnerability/CVE-2020-35169,Improper Input Validation in Dell BSAFE Crypto-C Micro Edition and Suite,"Dell BSAFE Crypto-C Micro Edition and BSAFE Micro Edition Suite are impacted by an improper input validation vulnerability, which may allow an attacker to exploit the software by feeding unintended input. This flaw enables the manipulation of system behavior, potentially compromising the integrity and security of the cryptographic operations. Users are advised to update to the respective fixed versions to mitigate risk and secure their applications.",Dell,Dell Bsafe Crypto-c Micro Edition,9.1,CRITICAL,0.001970000099390745,false,,false,false,false,,,false,false,,2022-07-11T20:15:00.000Z,0
CVE-2020-29506,https://securityvulnerability.io/vulnerability/CVE-2020-29506,Observable Timing Discrepancy Vulnerability in Dell BSAFE Crypto-C Micro Edition and Suite,"Dell BSAFE Crypto-C Micro Edition and BSAFE Micro Edition Suite are susceptible to an observable timing discrepancy vulnerability that could allow attackers to infer sensitive data based on the timing of cryptographic operations. This flaw may lead to potential information leakage, impacting the confidentiality and integrity of cryptographic transactions. It is crucial for users to upgrade to the latest versions to mitigate this risk effectively.",Dell,Dell Bsafe Crypto-c Micro Edition,6.8,MEDIUM,0.001820000004954636,false,,false,false,false,,,false,false,,2022-07-11T20:15:00.000Z,0
CVE-2020-35163,https://securityvulnerability.io/vulnerability/CVE-2020-35163,Use of Insufficiently Random Values in Dell BSAFE Crypto-C Micro Edition and Suite,"Dell BSAFE Crypto-C Micro Edition and BSAFE Micro Edition Suite exhibit a vulnerability due to the use of insufficiently random values in cryptographic operations. This weakness can potentially be exploited by attackers to compromise the integrity of encrypted data, affecting the overall security of applications relying on these products. It is crucial for users to update to the latest versions to mitigate the risks associated with this vulnerability.",Dell,Dell Bsafe Crypto-c Micro Edition,5.3,MEDIUM,0.001820000004954636,false,,false,false,false,,,false,false,,2022-07-11T20:15:00.000Z,0
CVE-2020-29507,https://securityvulnerability.io/vulnerability/CVE-2020-29507,Improper Input Validation in Dell BSAFE Crypto-C Micro Edition and Micro Edition Suite,"Dell BSAFE Crypto-C Micro Edition versions prior to 4.1.4 and Dell BSAFE Micro Edition Suite versions before 4.4 are susceptible to an improper input validation vulnerability. This flaw could potentially allow an attacker to exploit improperly handled input, leading to unauthorized access or manipulation of sensitive information. Users are encouraged to review their versions and apply the necessary updates to mitigate any potential risks.",Dell,Dell Bsafe Crypto-c Micro Edition,5.3,MEDIUM,0.0016599999507889152,false,,false,false,false,,,false,false,,2022-07-11T20:15:00.000Z,0
CVE-2020-35168,https://securityvulnerability.io/vulnerability/CVE-2020-35168,Observable Timing Discrepancy Vulnerability in Dell BSAFE Crypto-C Micro Edition and Suite,"The vulnerability present in Dell BSAFE Crypto-C Micro Edition and Micro Edition Suite relates to observable timing discrepancies that can be exploited by attackers. This flaw allows an adversary to gain insights into cryptographic operations, potentially compromising sensitive data. Users are urged to update their software to the latest versions to mitigate the risk associated with this vulnerability.",Dell,Dell Bsafe Crypto-c Micro Edition,4.7,MEDIUM,0.00215000007301569,false,,false,false,false,,,false,false,,2022-07-11T20:15:00.000Z,0
CVE-2020-29505,https://securityvulnerability.io/vulnerability/CVE-2020-29505,Key Management Error in Dell BSAFE Crypto-C and Micro Edition Suite,"Dell BSAFE Crypto-C Micro Edition and BSAFE Micro Edition Suite exhibit a key management error vulnerability, impacting versions prior to 4.1.5 and 4.5.2 respectively. This vulnerability could potentially allow unauthorized access, impacting the confidentiality and integrity of sensitive data. It is crucial for users of these products to upgrade to the latest versions to mitigate the risks associated with this security flaw.",Dell,Dell Bsafe Crypto-c Micro Edition,7.1,HIGH,0.0016299999551847577,false,,false,false,false,,,false,false,,2022-07-11T20:15:00.000Z,0
CVE-2020-26185,https://securityvulnerability.io/vulnerability/CVE-2020-26185,Buffer Over-Read Vulnerability in Dell BSAFE Micro Edition Suite,"The BSAFE Micro Edition Suite from Dell with versions prior to 4.5.1 is susceptible to a Buffer Over-Read vulnerability. This security flaw could potentially allow an attacker to access sensitive data or cause unintended behavior in the application, posing threats to data confidentiality and integrity. Organizations using affected versions of the software should address this vulnerability promptly to ensure their systems remain secure.",Dell,Dell Bsafe Micro Edition Suite,7.5,HIGH,0.0006300000241026282,false,,false,false,false,,,false,false,,2022-06-01T15:15:00.000Z,0
CVE-2020-26184,https://securityvulnerability.io/vulnerability/CVE-2020-26184,Improper Certificate Validation in Dell BSAFE Micro Edition Suite,Dell BSAFE Micro Edition Suite versions before 4.5.1 are impacted by an improper certificate validation issue that can potentially allow attackers to bypass security measures and impersonate valid entities. This vulnerability underscores the importance of ensuring robust validation processes to safeguard sensitive communications.,Dell,Dell Bsafe Micro Edition Suite,7.5,HIGH,0.0010000000474974513,false,,false,false,false,,,false,false,,2022-06-01T15:15:00.000Z,0
CVE-2022-24409,https://securityvulnerability.io/vulnerability/CVE-2022-24409,Covert Timing Channel Vulnerability in Dell BSAFE SSL-J,Dell BSAFE SSL-J has a covert timing channel vulnerability that malicious users could exploit to compromise the security of the affected system. This issue underscores the importance of maintaining updated software and being aware of vulnerability management practices. Only users with active BSAFE maintenance contracts can access detailed vulnerability information.,Dell,Dell Bsafe Ssl-j,5.9,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2022-02-23T22:15:00.000Z,0
CVE-2020-5360,https://securityvulnerability.io/vulnerability/CVE-2020-5360,,"Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems.",Dell,Dell Bsafe Micro Edition Suite,7.5,HIGH,0.0015200000489130616,false,,false,false,false,,,false,false,,2020-12-16T16:15:00.000Z,0
CVE-2020-5359,https://securityvulnerability.io/vulnerability/CVE-2020-5359,,"Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to modify and corrupt the encrypted data.",Dell,Dell Bsafe Micro Edition Suite,5.8,MEDIUM,0.0014199999859556556,false,,false,false,false,,,false,false,,2020-12-16T16:15:00.000Z,0
CVE-2019-3729,https://securityvulnerability.io/vulnerability/CVE-2019-3729,,"RSA BSAFE Micro Edition Suite versions prior to 4.4 (in 4.0.x, 4.1.x, 4.2.x and 4.3.x) are vulnerable to a Heap-based Buffer Overflow vulnerability when parsing ECDSA signature. A malicious user with adjacent network access could potentially exploit this vulnerability to cause a crash in the library of the affected system.",Dell,Rsa Bsafe Mes,2.4,LOW,0.000539999979082495,false,,false,false,false,,,false,false,,2019-09-30T22:15:00.000Z,0
CVE-2019-3728,https://securityvulnerability.io/vulnerability/CVE-2019-3728,,"RSA BSAFE Crypto-C Micro Edition versions prior to 4.0.5.4 (in 4.0.x) and 4.1.4 (in 4.1.x) and RSA BSAFE Micro Edition Suite versions prior to 4.0.13 (in 4.0.x) and prior to 4.4 (in 4.1.x, 4.2.x, 4.3.x) are vulnerable to a Buffer Over-read vulnerability when processing DSA signature. A malicious remote user could potentially exploit this vulnerability to cause a crash in the library of the affected system.",Dell,"Rsa Bsafe Crypto-c Micro Edition,Rsa Bsafe Mes",7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2019-09-30T22:15:00.000Z,0
CVE-2019-3733,https://securityvulnerability.io/vulnerability/CVE-2019-3733,,"RSA BSAFE Crypto-C Micro Edition, all versions prior to 4.1.4, is vulnerable to three (3) different Improper Clearing of Heap Memory Before Release vulnerability, also known as 'Heap Inspection vulnerability'. A malicious remote user could potentially exploit this vulnerability to extract information leaving data at risk of exposure.",Dell,"Rsa Bsafe Crypto-c Micro Edition,Rsa Bsafe Mes",4.4,MEDIUM,0.003019999945536256,false,,false,false,false,,,false,false,,2019-09-30T22:15:00.000Z,0