Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dell bsafe ssl-j vulnerabilities and exploits
(subscribe to this query)
5.9
CVSSv3
CVE-2018-11069
RSA BSAFE SSL-J versions before 6.2.4 contain a Covert Timing Channel vulnerability during RSA decryption, also known as a Bleichenbacher attack on RSA decryption. A remote attacker may be able to recover a RSA key.
Dell Bsafe Ssl-j
7.5
CVSSv3
CVE-2022-24409
Dell BSAFE SSL-J contains remediation for a covert timing channel vulnerability that may be exploited by malicious users to compromise the affected system. Only customers with active BSAFE maintenance contracts can receive details about this vulnerability. Public disclosure of th...
Dell Bsafe Ssl-j
5.9
CVSSv3
CVE-2016-0887
EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x and 4.1.x prior to 4.1.5, RSA BSAFE Crypto-C Micro Edition (CCME) 4.0.x and 4.1.x prior to 4.1.3, RSA BSAFE Crypto-J prior to 6.2.1, RSA BSAFE SSL-J prior to 6.2.1, and RSA BSAFE SSL-C prior to 2.8.9 allow remote malicious users to di...
Dell Bsafe Crypto-j
Dell Bsafe Ssl-c
Dell Bsafe Crypto-c-micro-edition
Dell Bsafe Micro-edition-suite
Dell Bsafe Ssl-j
NA
CVE-2014-4630
EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x prior to 4.0.6 and RSA BSAFE SSL-J prior to 6.1.4 do not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation, which allows man-in-the-middle malicious users to obtain sensitive...
Dell Bsafe Micro-edition-suite 4.0.0
Dell Bsafe Micro-edition-suite 4.0.1
Dell Bsafe Micro-edition-suite 4.0.2
Dell Bsafe Micro-edition-suite 4.0.3
Dell Bsafe Micro-edition-suite 4.0.4
Dell Bsafe Micro-edition-suite 4.0.5
Dell Bsafe Ssl-j
6.5
CVSSv3
CVE-2019-3739
RSA BSAFE Crypto-J versions before 6.2.5 are vulnerable to Information Exposure Through Timing Discrepancy vulnerabilities during ECDSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover ECDSA keys.
Dell Bsafe Ssl-j
Dell Bsafe Crypto-j
Dell Bsafe Cert-j
Oracle Retail Service Backbone 14.1
Oracle Retail Integration Bus 14.1
Oracle Retail Service Backbone 15.0
Oracle Retail Integration Bus 15.0
Oracle Weblogic Server 10.3.6.0.0
Oracle Weblogic Server 12.2.1.3.0
Oracle Retail Integration Bus 16.0
Oracle Retail Xstore Point Of Service 17.0.3
Oracle Weblogic Server 12.2.1.4.0
Oracle Application Performance Management 13.3.0.0
Oracle Weblogic Server 14.1.1.0.0
Oracle Database 12.1.0.2
Oracle Database 12.2.0.1
Oracle Database 18c
Oracle Database 19c
Oracle Retail Assortment Planning 15.0.3.0
Oracle Retail Predictive Application Server 14.1.3.0
Oracle Retail Predictive Application Server 15.0.3.0
Oracle Retail Assortment Planning 16.0.3.0
6.5
CVSSv3
CVE-2019-3738
RSA BSAFE Crypto-J versions before 6.2.5 are vulnerable to a Missing Required Cryptographic Step vulnerability. A malicious remote attacker could potentially exploit this vulnerability to coerce two parties into computing the same predictable shared key.
Dell Bsafe Ssl-j
Dell Bsafe Crypto-j
Dell Bsafe Cert-j
Mcafee Threat Intelligence Exchange Server 3.0.0
Mcafee Threat Intelligence Exchange Server
Oracle Retail Service Backbone 14.1
Oracle Retail Integration Bus 14.1
Oracle Retail Service Backbone 15.0
Oracle Retail Integration Bus 15.0
Oracle Retail Integration Bus 16.0
Oracle Communications Unified Inventory Management 7.3.2
Oracle Communications Unified Inventory Management 7.3.4
Oracle Communications Unified Inventory Management 7.3.5
Oracle Communications Unified Inventory Management 7.4.0
Oracle Retail Xstore Point Of Service 17.0.3
Oracle Application Performance Management 13.3.0.0
Oracle Database 12.1.0.2
Oracle Database 12.2.0.1
Oracle Database 18c
Oracle Database 19c
Oracle Retail Assortment Planning 15.0.3.0
Oracle Retail Predictive Application Server 14.1.3.0
6.5
CVSSv3
CVE-2019-3740
RSA BSAFE Crypto-J versions before 6.2.5 are vulnerable to an Information Exposure Through Timing Discrepancy vulnerabilities during DSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover DSA keys.
Dell Bsafe Ssl-j
Dell Bsafe Crypto-j
Dell Bsafe Cert-j
Oracle Retail Service Backbone 14.1
Oracle Retail Integration Bus 14.1
Oracle Weblogic Server 12.1.3.0.0
Oracle Retail Service Backbone 15.0
Oracle Retail Integration Bus 15.0
Oracle Weblogic Server 10.3.6.0.0
Oracle Weblogic Server 12.2.1.3.0
Oracle Retail Predictive Application Server 15.0
Oracle Retail Integration Bus 16.0
Oracle Communications Unified Inventory Management 7.3.2
Oracle Communications Unified Inventory Management 7.3.4
Oracle Communications Unified Inventory Management 7.3.5
Oracle Communications Unified Inventory Management 7.4.0
Oracle Retail Xstore Point Of Service 17.0.3
Oracle Weblogic Server 12.2.1.4.0
Oracle Application Performance Management 13.3.0.0
Oracle Weblogic Server 14.1.1.0.0
Oracle Database 12.1.0.2
Oracle Database 12.2.0.1
NA
CVE-2004-0112
The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote malicious users to cause a denial of service (crash) via a crafted SSL/TLS handshak...
Cisco Firewall Services Module
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1.2
Hp Aaa Server
Cisco Firewall Services Module 1.1 (3.005)
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 (0.208)
Avaya Sg203 4.4
Hp Hp-ux 11.11
Redhat Enterprise Linux Desktop 3.0
Hp Hp-ux 11.23
Cisco Ciscoworks Common Management Foundation 2.1
Freebsd Freebsd 5.1
Avaya Sg208 4.4
Redhat Enterprise Linux 3.0
Avaya Sg200 4.4
Avaya Sg5 4.4
Redhat Linux 7.2
Cisco Ciscoworks Common Services 2.2
Openbsd Openbsd 3.3
7.5
CVSSv3
CVE-2004-0079
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote malicious users to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
Cisco Firewall Services Module
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1.2
Hp Aaa Server
Cisco Firewall Services Module 1.1 (3.005)
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 (0.208)
Avaya Sg203 4.4
Hp Hp-ux 11.11
Redhat Enterprise Linux Desktop 3.0
Hp Hp-ux 11.23
Cisco Ciscoworks Common Management Foundation 2.1
Freebsd Freebsd 5.1
Avaya Sg208 4.4
Redhat Enterprise Linux 3.0
Avaya Sg200 4.4
Avaya Sg5 4.4
Redhat Linux 7.2
Cisco Ciscoworks Common Services 2.2
Openbsd Openbsd 3.3
NA
CVE-2004-0081
OpenSSL 0.9.6 prior to 0.9.6d does not properly handle unknown message types, which allows remote malicious users to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.
Cisco Firewall Services Module
Symantec Clientless Vpn Gateway 4400 5.0
Hp Apache-based Web Server 2.0.43.00
Cisco Firewall Services Module 1.1.3
Cisco Firewall Services Module 1.1.2
Hp Aaa Server
Cisco Firewall Services Module 1.1 (3.005)
Hp Apache-based Web Server 2.0.43.04
Cisco Firewall Services Module 2.1 (0.208)
Avaya Sg203 4.4
Hp Hp-ux 11.11
Redhat Enterprise Linux Desktop 3.0
Hp Hp-ux 11.23
Cisco Ciscoworks Common Management Foundation 2.1
Freebsd Freebsd 5.1
Avaya Sg208 4.4
Redhat Enterprise Linux 3.0
Avaya Sg200 4.4
Avaya Sg5 4.4
Redhat Linux 7.2
Cisco Ciscoworks Common Services 2.2
Openbsd Openbsd 3.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2