Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain a Use of Insufficiently Random Values Vulnerability.
References
Link | Resource |
---|---|
https://www.dell.com/support/kbdoc/en-us/000181115/dsa-2020-286-dell-bsafe-crypto-c-micro-edition-4-1-5-and-dell-bsafe-micro-edition-suite-4-6-multiple-security-vulnerabilities | Vendor Advisory |
https://www.oracle.com/security-alerts/cpujul2022.html | Patch Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
29 Nov 2022, 02:49
Type | Values Removed | Values Added |
---|---|---|
References | (N/A) https://www.oracle.com/security-alerts/cpujul2022.html - Patch, Third Party Advisory | |
CPE | cpe:2.3:a:oracle:security_service:12.2.1.4.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:12.2.1.4.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:database:12.1.0.2:*:*:*:enterprise:*:*:* cpe:2.3:a:oracle:security_service:12.2.1.3.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:12.2.1.3.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:database:21c:*:*:*:enterprise:*:*:* cpe:2.3:a:oracle:database:19c:*:*:*:enterprise:*:*:* cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:* |
25 Jul 2022, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
18 Jul 2022, 18:21
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
CPE | cpe:2.3:a:dell:bsafe_micro-edition-suite:*:*:*:*:*:*:*:* cpe:2.3:a:dell:bsafe_crypto-c-micro-edition:*:*:*:*:*:*:*:* |
|
CWE | CWE-330 | |
References | (CONFIRM) https://www.dell.com/support/kbdoc/en-us/000181115/dsa-2020-286-dell-bsafe-crypto-c-micro-edition-4-1-5-and-dell-bsafe-micro-edition-suite-4-6-multiple-security-vulnerabilities - Vendor Advisory |
12 Jul 2022, 14:15
Type | Values Removed | Values Added |
---|---|---|
Summary | Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain a Use of Insufficiently Random Values Vulnerability. |
11 Jul 2022, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-07-11 20:15
Updated : 2024-02-04 22:51
NVD link : CVE-2020-35163
Mitre link : CVE-2020-35163
CVE.ORG link : CVE-2020-35163
JSON object : View
Products Affected
oracle
- weblogic_server_proxy_plug-in
- database
- http_server
- security_service
dell
- bsafe_crypto-c-micro-edition
- bsafe_micro-edition-suite
CWE
CWE-330
Use of Insufficiently Random Values