cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-28074,https://securityvulnerability.io/vulnerability/CVE-2023-28074,Buffer Over-Read Vulnerability in Dell BSAFE Crypto-C Micro Edition and Related Products,"A vulnerability exists in the Dell BSAFE Crypto-C Micro Edition, version 4.1.5, and the Dell BSAFE Micro Edition Suite, comprising versions 4.0 to 4.6.1 and version 5.0, that allows for out-of-bounds read attacks. This security weakness can be exploited by an attacker who has local access, creating a potential risk for sensitive information exposure. Proper security updates are essential for users of these products to safeguard against unauthorized information access.",Dell,"Dell Bsafe Micro Edition Suite,Dell Bsafe Crypto-c Micro Edition",7.1,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-07-31T07:56:01.652Z,0
CVE-2020-35165,https://securityvulnerability.io/vulnerability/CVE-2020-35165,Observable Timing Discrepancy Vulnerability Affects Dell's BSAFE Crypto-C Micro Edition,"The vulnerability present in Dell BSAFE Crypto-C Micro Edition and BSAFE Micro Edition Suite manifests as an observable timing discrepancy, which can allow an attacker to infer sensitive information based on the timing variations in cryptographic operations. This flaw may lead to the exposure of cryptographic keys or other critical data, thereby compromising sensitive data integrity and confidentiality. Users are urged to update to the latest versions to mitigate potential security risks associated with this vulnerability.",Dell,"Dell Bsafe Crypto-c Micro Edition,Dell Bsafe Micro Edition Suite",5.1,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-22T05:56:50.088Z,0
CVE-2020-29504,https://securityvulnerability.io/vulnerability/CVE-2020-29504,Missing Required Cryptographic Step in Dell BSAFE Products,"Dell BSAFE Crypto-C Micro Edition and BSAFE Micro Edition Suite have a vulnerability due to the absence of a necessary cryptographic step in their operations. This flaw could potentially compromise the security measures intended to protect sensitive data processed by these products. Affected versions prior to 4.1.5 for Crypto-C Micro Edition and before 4.5.2 for the Micro Edition Suite are particularly susceptible, emphasizing the importance of ensuring that users apply updates to mitigate risks associated with this vulnerability. Affected users are encouraged to review security advisories and update to the latest versions to maintain optimal security.",Dell,"Bsafe Crypto-c Micro Edition,Dell Bsafe Micro Edition Suite",7.4,HIGH,0.0010499999625608325,false,,false,false,false,,,false,false,,2024-02-02T15:58:57.404Z,0
CVE-2021-21575,https://securityvulnerability.io/vulnerability/CVE-2021-21575,Observable Timing Discrepancy Vulnerability in Dell BSAFE Micro Edition Suite,"The BSAFE Micro Edition Suite by Dell exhibits an observable timing discrepancy vulnerability. This issue may allow an attacker to infer information based on the timing variations in responses, potentially compromising sensitive data. Versions prior to 4.5.2 are particularly affected, leading to risks associated with the integrity and confidentiality of sensitive applications that rely on this suite.",Dell,Bsafe Micro Edition Suite,5.9,MEDIUM,0.0010499999625608325,false,,false,false,false,,,false,false,,2024-02-02T15:53:52.071Z,0
CVE-2020-35166,https://securityvulnerability.io/vulnerability/CVE-2020-35166,Observable Timing Discrepancy in Dell BSAFE Crypto-C Micro Edition and Micro Edition Suite,"The Dell BSAFE Crypto-C Micro Edition and the Dell BSAFE Micro Edition Suite are vulnerable due to observable timing discrepancies, which may allow an attacker to gain information about sensitive data. This vulnerability affects versions before 4.1.5 of the Crypto-C Micro Edition and versions prior to 4.6 of the Micro Edition Suite, potentially enabling unauthorized access or manipulation of cryptographic processes.",Dell,"Bsafe Crypto-c Micro Edition,Dell Bsafe Micro Edition Suite",9.8,CRITICAL,0.0018400000408291817,false,,false,false,false,,,false,false,,2022-07-11T20:15:00.000Z,0
CVE-2020-29508,https://securityvulnerability.io/vulnerability/CVE-2020-29508,Improper Input Validation in Dell BSAFE Crypto-C Micro Edition and Micro Edition Suite,"The Dell BSAFE Crypto-C Micro Edition and Micro Edition Suite prior to specified versions are susceptible to an improper input validation vulnerability. This flaw allows attackers to manipulate input data, potentially leading to unexpected behavior or exposure of sensitive information. It is crucial for users of affected products to apply the latest updates to mitigate potential risks. For detailed guidance, please refer to Dell's support documentation.",Dell,Dell Bsafe Micro Edition Suite,5.3,MEDIUM,0.0016599999507889152,false,,false,false,false,,,false,false,,2022-07-11T20:15:00.000Z,0
CVE-2020-26184,https://securityvulnerability.io/vulnerability/CVE-2020-26184,Improper Certificate Validation in Dell BSAFE Micro Edition Suite,Dell BSAFE Micro Edition Suite versions before 4.5.1 are impacted by an improper certificate validation issue that can potentially allow attackers to bypass security measures and impersonate valid entities. This vulnerability underscores the importance of ensuring robust validation processes to safeguard sensitive communications.,Dell,Dell Bsafe Micro Edition Suite,7.5,HIGH,0.0010000000474974513,false,,false,false,false,,,false,false,,2022-06-01T15:15:00.000Z,0
CVE-2020-26185,https://securityvulnerability.io/vulnerability/CVE-2020-26185,Buffer Over-Read Vulnerability in Dell BSAFE Micro Edition Suite,"The BSAFE Micro Edition Suite from Dell with versions prior to 4.5.1 is susceptible to a Buffer Over-Read vulnerability. This security flaw could potentially allow an attacker to access sensitive data or cause unintended behavior in the application, posing threats to data confidentiality and integrity. Organizations using affected versions of the software should address this vulnerability promptly to ensure their systems remain secure.",Dell,Dell Bsafe Micro Edition Suite,7.5,HIGH,0.0006300000241026282,false,,false,false,false,,,false,false,,2022-06-01T15:15:00.000Z,0
CVE-2020-5359,https://securityvulnerability.io/vulnerability/CVE-2020-5359,,"Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to modify and corrupt the encrypted data.",Dell,Dell Bsafe Micro Edition Suite,5.8,MEDIUM,0.0014199999859556556,false,,false,false,false,,,false,false,,2020-12-16T16:15:00.000Z,0
CVE-2020-5360,https://securityvulnerability.io/vulnerability/CVE-2020-5360,,"Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems.",Dell,Dell Bsafe Micro Edition Suite,7.5,HIGH,0.0015200000489130616,false,,false,false,false,,,false,false,,2020-12-16T16:15:00.000Z,0
CVE-2016-0887,https://securityvulnerability.io/vulnerability/CVE-2016-0887,,"EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x and 4.1.x before 4.1.5, RSA BSAFE Crypto-C Micro Edition (CCME) 4.0.x and 4.1.x before 4.1.3, RSA BSAFE Crypto-J before 6.2.1, RSA BSAFE SSL-J before 6.2.1, and RSA BSAFE SSL-C before 2.8.9 allow remote attackers to discover a private-key prime by conducting a Lenstra side-channel attack that leverages an application's failure to detect an RSA signature failure during a TLS session.",Dell,"Bsafe Crypto-j,Bsafe Ssl-c,Bsafe Crypto-c-micro-edition,Bsafe Micro-edition-suite,Bsafe Ssl-j",5.9,MEDIUM,0.006130000110715628,false,,false,false,false,,,false,false,,2016-04-12T23:59:00.000Z,0
CVE-2014-4630,https://securityvulnerability.io/vulnerability/CVE-2014-4630,,"EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x before 4.0.6 and RSA BSAFE SSL-J before 6.1.4 do not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation, which allows man-in-the-middle attackers to obtain sensitive information or modify TLS session data via a ""triple handshake attack.""",Dell,"Bsafe Micro-edition-suite,Bsafe Ssl-j",,,0.00107999995816499,false,,false,false,false,,,false,false,,2014-12-30T15:00:00.000Z,0
CVE-2014-0636,https://securityvulnerability.io/vulnerability/CVE-2014-0636,,"EMC RSA BSAFE Micro Edition Suite (MES) 3.2.x before 3.2.6 and 4.0.x before 4.0.5 does not properly validate X.509 certificate chains, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate chain.",Dell,Bsafe Micro-edition-suite,,,0.0008299999753944576,false,,false,false,false,,,false,false,,2014-04-11T19:00:00.000Z,0
CVE-2014-0628,https://securityvulnerability.io/vulnerability/CVE-2014-0628,,"The server in EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x before 4.0.5 does not properly process certificate chains, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.",Dell,Bsafe Micro-edition-suite,,,0.003650000086054206,false,,false,false,false,,,false,false,,2014-03-25T01:00:00.000Z,0