PT-2019-16672 · Rsa · Emc Rsa Bsafe Micro Edition Suite+1
Published
2019-09-30
·
Updated
2025-11-04
·
CVE-2019-3728
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
RSA BSAFE Crypto-C Micro Edition versions prior to 4.0.5.4
RSA BSAFE Crypto-C Micro Edition version 4.1.4
RSA BSAFE Micro Edition Suite versions prior to 4.0.13
RSA BSAFE Micro Edition Suite versions prior to 4.4
Description
The issue is related to a Buffer Over-read vulnerability when processing DSA signature. A malicious remote user could potentially exploit this vulnerability to cause a crash in the library of the affected system.
Recommendations
For RSA BSAFE Crypto-C Micro Edition versions prior to 4.0.5.4, update to version 4.0.5.4 or later.
For RSA BSAFE Crypto-C Micro Edition version 4.1.4, update to a version later than 4.1.4.
For RSA BSAFE Micro Edition Suite versions prior to 4.0.13, update to version 4.0.13 or later.
For RSA BSAFE Micro Edition Suite versions prior to 4.4, update to version 4.4 or later.
Fix
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Rsa Bsafe Crypto-C Micro Edition
Emc Rsa Bsafe Micro Edition Suite