CVE-2019-3739

🗓️ 18 Sep 2019 22:23:10Reported by dellType

cve🔗 web.nvd.nist.gov📰️ 8 Media mentions👁 228 Views

RSA BSAFE Crypto-J < 6.2.5 ECDSA key generation vulnerabilit

Reporter	Title	Published	Views	Family All 14
CNVD	Dell RSA BSAFE Crypto-J Timing Discrepancy Vulnerability	18 Sep 201900:00	–	cnvd
Cvelist	CVE-2019-3739	18 Sep 201922:23	–	cvelist
EUVD	EUVD-2019-13374	7 Oct 202500:30	–	euvd
Into the symmetry	Side channel timing attacks against (EC)DSA in RSA BSAFE CVE-2019-3739/CVE-2019-3740 - Project Wycheproof is the AFL for Cryptography	16 Aug 201909:18	–	intothesymmetry
NVD	CVE-2019-3739	18 Sep 201923:15	–	nvd
Oracle	Oracle Critical Patch Update Advisory - April 2021	20 Apr 202100:00	–	oracle
Oracle	Oracle Critical Patch Update Advisory - April 2022	19 Apr 202200:00	–	oracle
Oracle	Oracle Critical Patch Update Advisory - July 2020	14 Jul 202000:00	–	oracle
Oracle	Oracle Critical Patch Update Advisory - July 2021	20 Jul 202100:00	–	oracle
Oracle	Oracle Critical Patch Update Advisory - October 2020	20 Oct 202000:00	–	oracle

NVD

Node

dell bsafe_cert-jRange≤6.2.4

dell bsafe_crypto-jRange<6.2.5

dell bsafe_ssl-jRange≤6.2.4.1

Node

oracle application_performance_managementMatch13.3.0.0

oracle application_performance_managementMatch13.4.0.0

oracle communications_network_integrityMatch7.3.2

oracle communications_network_integrityMatch7.3.5

oracle communications_network_integrityMatch7.3.6

oracle databaseMatch12.1.0.2enterprise

oracle databaseMatch12.2.0.1enterprise

oracle databaseMatch18centerprise

oracle databaseMatch19centerprise

oracle goldengateRange<19.1.0.0.0.210420

oracle retail_assortment_planningMatch15.0.3.0

oracle retail_assortment_planningMatch16.0.3.0

oracle retail_integration_busMatch14.1

oracle retail_integration_busMatch15.0

oracle retail_integration_busMatch16.0

oracle retail_predictive_application_serverMatch14.1.3.0

oracle retail_predictive_application_serverMatch15.0.3.0

oracle retail_predictive_application_serverMatch16.0.3.0

oracle retail_service_backboneMatch14.1

oracle retail_service_backboneMatch15.0

oracle retail_service_backboneMatch16.0

oracle retail_store_inventory_managementMatch14.0.4

oracle retail_store_inventory_managementMatch14.1.3

oracle retail_store_inventory_managementMatch15.0.3

oracle retail_store_inventory_managementMatch16.0.3

oracle retail_xstore_point_of_serviceMatch15.0.3

oracle retail_xstore_point_of_serviceMatch16.0.5

oracle retail_xstore_point_of_serviceMatch17.0.3

oracle retail_xstore_point_of_serviceMatch18.0.2

oracle retail_xstore_point_of_serviceMatch19.0.1

oracle storagetek_acslsMatch8.5.1

oracle storagetek_tape_analytics_sw_toolMatch2.3

oracle weblogic_serverMatch10.3.6.0.0

oracle weblogic_serverMatch12.2.1.3.0

oracle weblogic_serverMatch12.2.1.4.0

oracle weblogic_serverMatch14.1.1.0.0

[
  {
    "product": "RSA BSAFE Crypto-J",
    "vendor": "Dell",
    "versions": [
      {
        "status": "affected",
        "version": "prior to 6.2.5"
      }
    ]
  }
]

Source	Link
oracle	www.oracle.com//security-alerts/cpujul2021.html
oracle	www.oracle.com/security-alerts/cpuapr2022.html
oracle	www.oracle.com/security-alerts/cpuApr2021.html
oracle	www.oracle.com/security-alerts/cpuoct2020.html
oracle	www.oracle.com/security-alerts/cpujul2020.html
dell	www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE&
oracle	www.oracle.com/security-alerts/cpuoct2021.html

21 Nov 2024 04:42Current

7.9High risk

Vulners AI Score7.9

CVSS 24.3

CVSS 3.16.5

CVSS 36.5

EPSS0.01239