Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2018-11055

Published: 31/08/2018 Updated: 18/04/2022
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 187
Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Summary

RSA BSAFE Micro Edition Suite, versions before 4.0.11 (in 4.0.x) and before 4.1.6.1 (in 4.1.x), contains an Improper Clearing of Heap Memory Before Release ('Heap Inspection') vulnerability. Decoded PKCS #12 data in heap memory is not zeroized by MES before releasing the memory internally and a malicious local user could gain access to the unauthorized data by doing heap inspection.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

dell bsafe

oracle jd edwards enterpriseone tools 9.2

oracle security service 12.1.3.0.0

oracle enterprise manager ops center 12.3.3

oracle security service 11.1.1.9.0

oracle security service 12.2.1.3.0

oracle application testing suite 13.3.0.1

oracle retail predictive application server 15.0.3

oracle enterprise manager ops center 12.4.0

oracle communications ip service activator 7.4.0

oracle communications ip service activator 7.3.0

oracle core rdbms 11.2.0.4

oracle core rdbms 12.2.0.1

oracle core rdbms 12.1.0.2

oracle core rdbms 19c

oracle core rdbms 18c

oracle retail predictive application server 16.0.3.0

oracle goldengate application adapters 12.3.2.1.0

oracle communications analytics 12.1.1

oracle real user experience insight 13.3.1.0

oracle real user experience insight 13.1.2.1

oracle real user experience insight 13.2.3.1

oracle timesten in-memory database

Mailing Lists

Full Disclosure: DSA-2018-128: RSA BSAFE Micro Edition Suite and Crypto-C Micro Edition Multiple Security Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 DSA-2018-128: RSA BSAFE Micro Edition Suite and Crypto-C Micro Edition Multiple Security Vulnerabilities Dell EMC Identifier: DSA-2018-128 CVE Identifier: CVE-2018-11054, CVE-2018-11055, CVE-2018-11056, CVE-2018-11057, CVE-2018-11058 Severity: High Severity Rating: View details below for ...

References

CWE-404http://seclists.org/fulldisclosure/2018/Aug/46https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.htmlhttps://www.oracle.com/security-alerts/cpujan2020.htmlhttps://www.oracle.com/security-alerts/cpuapr2020.htmlhttps://www.oracle.com/security-alerts/cpujul2020.htmlhttps://www.oracle.com/security-alerts/cpuoct2020.htmlhttps://nvd.nist.govhttp://seclists.org/fulldisclosure/2018/Aug/46
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627CVE-2022-45803CVE-2024-38319cameratemplate injectionCVE-2024-27801CVE-2024-0762CVE-2024-5791unauthorized
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook