Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 1:38 p.m.13 views

CVE-2014-4192

The DualECDRBG implementation in EMC RSA BSAFE-C Toolkits aka Share for C and C++ processes certain requests for output bytes by considering only the requested byte count and not the use of cached bytes, which makes it easier for remote attackers to obtain plaintext from TLS sessions by recoverin...

5.8CVSS6.7AI score0.01683EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 7:40 p.m.37 views

Security Bulletin: IBM WebSphere Transformation Extender Secure Adapter Collection vulnerabilities: RSA BSAFE-C (CVE-2014-4191, CVE-2014-4192) and SSLv3 (CVE-2014-3566)

Summary EMC RSA BSAFE-C Toolkits, utilized by WebSphere Transformation Extender Secure Adapter Collection, could allow a remote attacker to obtain sensitive information. Additionally, SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption...

5CVSS0.8AI score0.99999EPSS
Exploits7Affected Software1
CVE
CVE
added 2014/06/17 3:0 p.m.60 views

CVE-2014-4192

CVE-2014-4192 affects EMC RSA BSAFE-C Toolkits (Share for C/C++) Dual_EC_DRBG. The vulnerability arises from how output bytes are produced: the implementation uses the requested byte count without considering cached bytes, enabling recovery of the algorithm’s inner state and potential plaintext e...

5CVSS4.9AI score0.01683EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2014/06/17 3:0 p.m.25 views

CVE-2014-4192

The DualECDRBG implementation in EMC RSA BSAFE-C Toolkits aka Share for C and C++ processes certain requests for output bytes by considering only the requested byte count and not the use of cached bytes, which makes it easier for remote attackers to obtain plaintext from TLS sessions by recoverin...

6.1AI score0.01683EPSS
Exploits0References2
Rows per page
Query Builder