RSA BSAFE Crypto-J versions prior to 6.2.4 and RSA BSAFE SSL-J versions prior to 6.2.4 contain a Covert Timing Channel vulnerability during PKCS #1 unpadding operations, also known as a Bleichenbacher attack. A remote attacker may be able to recover a RSA key.
CPE | Name | Operator | Version |
---|---|---|---|
bsafe_crypto-j | lt | 6.2.4 | |
rsa_bsafe_ssl-j | lt | 6.2.4 |