PT-2019-16675 · Rsa · Rsa Bsafe Crypto-C Micro Edition+1

Published

2019-09-30

Updated

2022-04-12

CVE-2019-3731

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions RSA BSAFE Crypto-C Micro Edition versions prior to 4.1.4 RSA Micro Edition Suite versions prior to 4.4

Description The issue is related to an Information Exposure Through Timing Discrepancy, which could be exploited by a malicious remote user to extract information, potentially leaving data at risk of exposure.

Recommendations For RSA BSAFE Crypto-C Micro Edition versions prior to 4.1.4, update to version 4.1.4 or later. For RSA Micro Edition Suite versions prior to 4.4, update to version 4.4 or later.

Fix

Side Channel Attack

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-310CWE-203

Related Identifiers

CVE-2019-3731

Affected Products

Rsa Bsafe Crypto-C Micro Edition

Rsa Micro Edition Suite

PT-2019-16675 · Rsa · Rsa Bsafe Crypto-C Micro Edition+1

CVE-2019-3731

Weakness Enumeration

Related Identifiers

Affected Products

References · 5