CVE-2019-3728

Summary

RSA BSAFE Crypto-C Micro Edition versions from 4.0.0.0 before 4.0.5.4 and from 4.1.0 before 4.1.4, RSA BSAFE Micro Edition Suite versions from 4.0.0 before 4.0.13 and from 4.1.0 before 4.4 and RSA Crypto-C versions from 6.0.0 through 6.4.* are vulnerable to an out-of-bounds read vulnerability when processing DSA signature. A malicious remote user could potentially exploit this vulnerability to cause a crash in the library of the affected system.

Affected Software

VendorProductVersion RangeStatus
DellRSA BSAFE Crypto-C Micro Edition4.0.0.0 < 4.0.5.4affected
DellRSA BSAFE Crypto-C Micro Edition4.1.0 < 4.1.4affected
DellRSA BSAFE Micro Edition Suite4.0.0 < 4.0.13affected
DellRSA BSAFE Micro Edition Suite4.1.0 < 4.4affected
DellRSA Crypto-C6.0.0 <= 6.4.*affected

Weaknesses

  • CWE-125: CWE-125: Out-of-bounds Read

ADP Enrichment

CVE Program Container

Additional References

References