Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2019-13374

Malware in sbrugna...

6.5CVSS6.8AI score0.02538EPSS
Exploits0References9
NVD
NVD
added 2019/09/18 11:15 p.m.30 views

CVE-2019-3740

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to an Information Exposure Through Timing Discrepancy vulnerabilities during DSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover DSA keys...

6.5CVSS6.8AI score0.03753EPSS
Exploits0References7
NVD
NVD
added 2019/09/18 11:15 p.m.15 views

CVE-2019-3738

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to a Missing Required Cryptographic Step vulnerability. A malicious remote attacker could potentially exploit this vulnerability to coerce two parties into computing the same predictable shared key...

6.5CVSS6.5AI score0.01681EPSS
Exploits0References8
Prion
Prion
added 2019/09/18 11:15 p.m.19 views

Information disclosure

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to an Information Exposure Through Timing Discrepancy vulnerabilities during DSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover DSA keys...

4.3CVSS8AI score0.03753EPSS
Exploits0References7Affected Software18
Prion
Prion
added 2019/09/18 11:15 p.m.19 views

Design/Logic Flaw

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to a Missing Required Cryptographic Step vulnerability. A malicious remote attacker could potentially exploit this vulnerability to coerce two parties into computing the same predictable shared key...

4.3CVSS7.6AI score0.01681EPSS
Exploits0References8Affected Software16
CVE
CVE
added 2019/09/18 10:23 p.m.242 views

CVE-2019-3739

CVE-2019-3739 concerns RSA BSAFE Crypto-J versions prior to 6.2.5, where information exposure can occur via timing discrepancy during ECDSA key generation. The vulnerability could allow a remote attacker to recover ECDSA keys. The provided documents identify the affected component as Dell/Certico...

6.5CVSS7.9AI score0.02538EPSS
Exploits0References7Affected Software3
Cvelist
Cvelist
added 2019/09/18 10:23 p.m.28 views

CVE-2019-3739

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to Information Exposure Through Timing Discrepancy vulnerabilities during ECDSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover ECDSA keys...

6.5CVSS8.1AI score0.02538EPSS
Exploits0References7
CVE
CVE
added 2019/09/18 10:23 p.m.245 views

CVE-2019-3740

CVE-2019-3740 concerns RSA BSAFE Crypto-J used by Oracle GoldenGate Install (Dell BSAFE Crypto-J). The root cause is a timing-discrepancy vulnerability during DSA key generation that could allow a remote attacker to recover DSA private keys. Affected product/component: Oracle GoldenGate (Install ...

6.5CVSS7.9AI score0.03753EPSS
Exploits0References7Affected Software3
Cvelist
Cvelist
added 2019/09/18 10:23 p.m.23 views

CVE-2019-3738

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to a Missing Required Cryptographic Step vulnerability. A malicious remote attacker could potentially exploit this vulnerability to coerce two parties into computing the same predictable shared key...

6.5CVSS7.7AI score0.01681EPSS
Exploits0References8
Cvelist
Cvelist
added 2019/09/18 10:23 p.m.33 views

CVE-2019-3740

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to an Information Exposure Through Timing Discrepancy vulnerabilities during DSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover DSA keys...

6.5CVSS8.1AI score0.03753EPSS
Exploits0References7
OSV
OSV
added 2018/09/11 7:29 p.m.4 views

CVE-2018-11070

RSA BSAFE Crypto-J versions prior to 6.2.4 and RSA BSAFE SSL-J versions prior to 6.2.4 contain a Covert Timing Channel vulnerability during PKCS 1 unpadding operations, also known as a Bleichenbacher attack. A remote attacker may be able to recover a RSA key...

5.9CVSS5.8AI score0.01656EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/02/03 7:24 a.m.28 views

CVE-2016-8212

An issue was discovered in EMC RSA BSAFE Crypto-J versions prior to 6.2.2. There is an Improper OCSP Validation Vulnerability. OCSP responses have two time values: thisUpdate and nextUpdate. These specify a validity period; however, both values are optional. Crypto-J treats the lack of a nextUpda...

4.8AI score0.01921EPSS
Exploits0References3
Rows per page
Query Builder