Lucene search

K
nvd[email protected]NVD:CVE-2019-3732
HistorySep 30, 2019 - 10:15 p.m.

CVE-2019-3732

2019-09-3022:15:10
CWE-385
CWE-203
web.nvd.nist.gov
6
cve-2019-3732
rsa bsafe
micro edition suite
information exposure

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

6.1

Confidence

High

EPSS

0.006

Percentile

79.4%

RSA BSAFE Crypto-C Micro Edition, versions prior to 4.0.5.3 (in 4.0.x) and versions prior to 4.1.3.3 (in 4.1.x), and RSA Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) versions prior to 4.1.6.1 (in 4.1.x) and versions prior to 4.3.3 (4.2.x and 4.3.x) are vulnerable to an Information Exposure Through Timing Discrepancy. A malicious remote user could potentially exploit this vulnerability to extract information leaving data at risk of exposure.

Affected configurations

Nvd
Node
dellbsafe_crypto-c-micro-editionRange4.04.0.5.3
OR
dellbsafe_micro-edition-suiteRange4.0.04.0.11
OR
dellbsafe_micro-edition-suiteRange4.1.04.1.6.1
OR
dellbsafe_micro-edition-suiteRange4.2.04.3.3
OR
emcrsa_bsafe_crypto-cRange4.14.1.3.3micro_edition
VendorProductVersionCPE
dellbsafe_crypto-c-micro-edition*cpe:2.3:a:dell:bsafe_crypto-c-micro-edition:*:*:*:*:*:*:*:*
dellbsafe_micro-edition-suite*cpe:2.3:a:dell:bsafe_micro-edition-suite:*:*:*:*:*:*:*:*
emcrsa_bsafe_crypto-c*cpe:2.3:a:emc:rsa_bsafe_crypto-c:*:*:*:*:micro_edition:*:*:*

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

6.1

Confidence

High

EPSS

0.006

Percentile

79.4%

Related for NVD:CVE-2019-3732