Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2018-11058

Published: 14/09/2018 Updated: 18/04/2022
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Dell

Vulnerability Summary

RSA BSAFE Micro Edition Suite, versions before 4.0.11 (in 4.0.x) and before 4.1.6 (in 4.1.x), and RSA BSAFE Crypto-C Micro Edition, version before 4.0.5.3 (in 4.0.x) contain a Buffer Over-Read vulnerability when parsing ASN.1 data. A remote attacker could use maliciously constructed ASN.1 data that would result in such issue.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

dell bsafe

dell bsafe crypto-c

oracle application testing suite 13.3.0.1

oracle communications analytics 12.1.1

oracle communications ip service activator 7.3.0

oracle communications ip service activator 7.4.0

oracle core rdbms 11.2.0.4

oracle core rdbms 12.1.0.2

oracle core rdbms 12.2.0.1

oracle core rdbms 18c

oracle core rdbms 19c

oracle enterprise manager ops center 12.3.3

oracle enterprise manager ops center 12.4.0

oracle goldengate application adapters 12.3.2.1.0

oracle jd edwards enterpriseone tools 9.2

oracle real user experience insight 13.1.2.1

oracle real user experience insight 13.2.3.1

oracle real user experience insight 13.3.1.0

oracle retail predictive application server 15.0.3

oracle retail predictive application server 16.0.3.0

oracle security service 11.1.1.9.0

oracle security service 12.1.3.0.0

oracle security service 12.2.1.3.0

oracle timesten in-memory database

Recent Articles

How much does Oracle love you? Thiiiis much: Latest patch bundle has 402 fixes
The Register • Gareth Corfield • 21 Oct 2020

How many times do you want to read the CVSS rating 9.8 today?

Oracle has released its final quarterly batch of patches for the year for security flaws in its products. The total this time? 402 fixes, the bulk of which are rated critical in terms of severity. In all, there are 230 CVE-listed bugs fixed across 27 Oracle products, according to Tenable, which noted Big Red's record is still July 2020 with more than 440 patches. "Oracle continues to periodically receive reports of attempts to maliciously exploit vulnerabilities for which Oracle has already rele...

Read more...

References

CWE-125http://seclists.org/fulldisclosure/2018/Aug/46http://www.securityfocus.com/bid/108106https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.htmlhttps://www.oracle.com/security-alerts/cpujan2020.htmlhttps://www.oracle.com/security-alerts/cpuapr2020.htmlhttps://www.oracle.com/security-alerts/cpujul2020.htmlhttps://www.oracle.com/security-alerts/cpuoct2020.htmlhttps://nvd.nist.govhttps://www.theregister.co.uk/2020/10/21/oracle_october_patches/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook