Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-28074

Dell BSAFE Crypto-C Micro Edition, version 4.1.5, and Dell BSAFE Micro Edition Suite, versions 4.0 through 4.6.1 and version 5.0, contains an Out-of-bounds Read vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to Information exposure.

Published

2024-07-31T08:15:02.243

Last Modified

2024-08-20T17:15:10.200

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.2 (MEDIUM)

Weaknesses

Type: Primary
CWE-125
Type: Secondary
CWE-125

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	dell	bsafe_crypto-c-micro-edition	≤ 4.1.5	Yes
Application	dell	bsafe_micro-edition-suite	< 4.6.2	Yes
Application	dell	bsafe_micro-edition-suite	5.0	Yes

References

https://www.dell.com/support/kbdoc/en-us/000212325/dsa-2023-120-dell-bsafe-micro-edition-suite-security-update Vendor Advisory ([email protected])