Vulnerabilities > CVE-2018-15769

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

dell

oracle

NVD

Published: 2018-11-16

Updated: 2022-04-18

Summary

RSA BSAFE Micro Edition Suite versions prior to 4.0.11 (in 4.0.x series) and versions prior to 4.1.6.2 (in 4.1.x series) contain a key management error issue. A malicious TLS server could potentially cause a Denial Of Service (DoS) on TLS clients during the handshake when a very large prime value is sent to the TLS client, and an Ephemeral or Anonymous Diffie-Hellman cipher suite (DHE or ADH) is used.

Vulnerable Configurations

Part	Description	Count
Application	Dell Dell Bsafe 4.0.0 Dell Bsafe 4.0.1 Dell Bsafe 4.0.2 Dell Bsafe 4.0.3 Dell Bsafe 4.0.4 Dell Bsafe 4.0.5 Dell Bsafe 4.0.5.3 Dell Bsafe 4.0.7 Dell Bsafe 4.0.8 Dell Bsafe 4.0.9 Dell Bsafe 4.0.10 Dell Bsafe 4.1.0 Dell Bsafe 4.1.0.1 Dell Bsafe 4.1.1 Dell Bsafe 4.1.2 Dell Bsafe 4.1.3 Dell Bsafe 4.1.4 Dell Bsafe 4.1.5 Dell Bsafe 4.1.6 Dell Bsafe 4.1.6.1	20
Application	Oracle Oracle JD Edwards Enterpriseone Tools 9.2 Oracle Security Service 12.1.3.0.0 Oracle Security Service 11.1.1.9.0 Oracle Security Service 12.2.1.3.0 Oracle Enterprise Manager OPS Center 12.3.3 Oracle Enterprise Manager OPS Center 12.4.0 Oracle Application Testing Suite 13.3.0.1 Oracle Retail Predictive Application Server 15.0.3 Oracle Retail Predictive Application Server 16.0.3.0 Oracle Communications IP Service Activator 7.4.0 Oracle Communications IP Service Activator 7.3.0 Oracle Core Rdbms 11.2.0.4 Oracle Core Rdbms 12.2.0.1 Oracle Core Rdbms 12.1.0.2 Oracle Core Rdbms 19C Oracle Core Rdbms 18C Oracle Goldengate Application Adapters 12.3.2.1.0 Oracle Communications Analytics 12.1.1 Oracle Real User Experience Insight 13.3.1.0 Oracle Real User Experience Insight 13.1.2.1 Oracle Real User Experience Insight 13.2.3.1 Oracle Timesten IN Memory Database - Oracle Timesten IN Memory Database 11.2.2.8.27 Oracle Timesten IN Memory Database 11.2.2.8.49 Oracle Timesten IN Memory Database 18.1.2.1.0 Oracle Timesten IN Memory Database 18.1.3.1.0	26

Vulnerabilities > CVE-2018-15769 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2018-15769"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2018-15769