Vulnerabilities > CVE-2018-11068 - Incomplete Cleanup vulnerability in Dell Bsafe Ssl-J

CVSS 4.6 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

low complexity

dell

CWE-459

NVD

Published: 2018-09-11

Updated: 2024-11-21

Summary

RSA BSAFE SSL-J versions prior to 6.2.4 contain a Heap Inspection vulnerability that could allow an attacker with physical access to the system to recover sensitive key material.

Vulnerable Configurations

Part	Description	Count
Application	Dell Dell Bsafe SSL J - Dell Bsafe SSL J 3.0 Dell Bsafe SSL J 3.0.1 Dell Bsafe SSL J 3.1 Dell Bsafe SSL J 5.0 Dell Bsafe SSL J 5.1 Dell Bsafe SSL J 5.1.1 Dell Bsafe SSL J 5.1.2 Dell Bsafe SSL J 5.1.3 Dell Bsafe SSL J 5.1.4 Dell Bsafe SSL J 5.2 Dell Bsafe SSL J 6.0 Dell Bsafe SSL J 6.0.1 Dell Bsafe SSL J 6.0.2 Dell Bsafe SSL J 6.1 Dell Bsafe SSL J 6.1.1 Dell Bsafe SSL J 6.1.2 Dell Bsafe SSL J 6.1.3 Dell Bsafe SSL J 6.1.4 Dell Bsafe SSL J 6.2 Dell Bsafe SSL J 6.2.1 Dell Bsafe SSL J 6.2.2	22

Common Weakness Enumeration (CWE)

CWE-459 - Incomplete Cleanup

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References