Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2019-3732

Опубликовано: 30 сент. 2019
Источник: nvd
CVSS3: 5.9
CVSS3: 7.5
CVSS2: 5
EPSS Низкий

Описание

RSA BSAFE Crypto-C Micro Edition, versions prior to 4.0.5.3 (in 4.0.x) and versions prior to 4.1.3.3 (in 4.1.x), and RSA Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) versions prior to 4.1.6.1 (in 4.1.x) and versions prior to 4.3.3 (4.2.x and 4.3.x) are vulnerable to an Information Exposure Through Timing Discrepancy. A malicious remote user could potentially exploit this vulnerability to extract information leaving data at risk of exposure.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:dell:bsafe_crypto-c-micro-edition:*:*:*:*:*:*:*:*
Версия от 4.0 (включая) до 4.0.5.3 (исключая)
cpe:2.3:a:dell:bsafe_micro-edition-suite:*:*:*:*:*:*:*:*
Версия от 4.0.0 (включая) до 4.0.11 (исключая)
cpe:2.3:a:dell:bsafe_micro-edition-suite:*:*:*:*:*:*:*:*
Версия от 4.1.0 (включая) до 4.1.6.1 (исключая)
cpe:2.3:a:dell:bsafe_micro-edition-suite:*:*:*:*:*:*:*:*
Версия от 4.2.0 (включая) до 4.3.3 (исключая)
cpe:2.3:a:emc:rsa_bsafe_crypto-c:*:*:*:*:micro_edition:*:*:*
Версия от 4.1 (включая) до 4.1.3.3 (исключая)

EPSS

Процентиль: 54%
0.00313
Низкий

5.9 Medium

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-385
CWE-203

Связанные уязвимости

github логотип

GHSA-4qgj-3gq9-2chf

CVSS3: 7.5
github
больше 3 лет назад

RSA BSAFE Crypto-C Micro Edition, versions prior to 4.0.5.3 (in 4.0.x) and versions prior to 4.1.3.3 (in 4.1.x), and RSA Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) versions prior to 4.1.6.1 (in 4.1.x) and versions prior to 4.3.3 (4.2.x and 4.3.x) are vulnerable to an Information Exposure Through Timing Discrepancy. A malicious remote user could potentially exploit this vulnerability to extract information leaving data at risk of exposure.

EPSS

Процентиль: 54%
0.00313
Низкий

5.9 Medium

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-385
CWE-203