CVE-2019-3740

Summary

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to an Information Exposure Through Timing Discrepancy vulnerabilities during DSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover DSA keys.

Affected Software

VendorProductVersion RangeStatus
DellRSA BSAFE Crypto-Jprior to 6.2.5affected

Weaknesses

  • CWE-310: CWE-310: Cryptographic Issues

ADP Enrichment

CVE Program Container

Additional References

References