Vulnerabilities > EMC > RSA Bsafe SSL J

DATE CVE VULNERABILITY TITLE RISK
2014-02-18 CVE-2014-0627 Cryptographic Issues vulnerability in multiple products
The SSLEngine API implementation in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows remote attackers to trigger the selection of a weak cipher suite by using the wrap method during a certain incomplete-handshake state.
network
low complexity
emc dell CWE-310
5.0
5.0
2014-02-18 CVE-2014-0626 Cryptographic Issues vulnerability in multiple products
The (1) JSAFE and (2) JSSE APIs in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 make it easier for remote attackers to bypass intended cryptographic protection mechanisms by triggering application-data processing during the TLS handshake, a time at which the data is both unencrypted and unauthenticated.
network
low complexity
dell emc CWE-310
5.0
5.0
2014-02-18 CVE-2014-0625 Resource Management Errors vulnerability in multiple products
The SSLSocket implementation in the (1) JSAFE and (2) JSSE APIs in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows remote attackers to cause a denial of service (memory consumption) by triggering application-data processing during the TLS handshake, a time at which the data is internally buffered.
network
low complexity
emc dell CWE-399
5.0
5.0