Bsafe Micro Edition Suite
Approved changes feed: RSS · Atom
cpe:2.3:a:rsa:bsafe_micro_edition_suite:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Rsa (6c9430aa-ac8c-5ac3-900a-ccfffd5a25d5) |
|---|---|
| Product | Bsafe Micro Edition Suite (24b1c050-3dc0-542b-adab-26b7d1d69b4f) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-11058 |
vulnerable | 2026-06-03 14:38:00.797581 |
Details available
HIGH (7.5)
RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6 (in 4.1.x), and RSA BSAFE Crypto-C Micro Edition, version prior to 4.0.5.3 (in 4.0.x) contain a Buffer Over-Read vulnerability when parsing ASN.1 data. A remote attacker could use maliciously constructed ASN.1 data that would result in such issue.
Published: 2018-09-14T20:00:00.000Z
Updated: 2024-08-05T07:54:36.479Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-11057 |
vulnerable | 2026-06-03 14:38:00.796582 |
Details available
MEDIUM (5.9)
RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6.1 (in 4.1.x) contains a Covert Timing Channel vulnerability during RSA decryption, also known as a Bleichenbacher attack on RSA decryption. A remote attacker may be able to recover a RSA key.
Published: 2018-08-31T18:00:00.000Z
Updated: 2024-08-05T07:54:36.548Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-11056 |
vulnerable | 2026-06-03 14:38:00.792441 |
Details available
MEDIUM (6.5)
RSA BSAFE Micro Edition Suite, prior to 4.1.6.1 (in 4.1.x), and RSA BSAFE Crypto-C Micro Edition versions prior to 4.0.5.3 (in 4.0.x) contain an Uncontrolled Resource Consumption ('Resource Exhaustion') vulnerability when parsing ASN.1 data. A remote attacker could use maliciously constructed ASN.1 data that would exhaust the stack, potentially causing a Denial Of Service.
Published: 2018-08-31T18:00:00.000Z
Updated: 2024-08-05T07:54:36.548Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-11055 |
vulnerable | 2026-06-03 14:38:00.786782 |
Details available
MEDIUM (4.4)
RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6.1 (in 4.1.x), contains an Improper Clearing of Heap Memory Before Release ('Heap Inspection') vulnerability. Decoded PKCS #12 data in heap memory is not zeroized by MES before releasing the memory internally and a malicious local user could gain access to the unauthorized data by doing heap inspection.
Published: 2018-08-31T18:00:00.000Z
Updated: 2024-08-05T07:54:36.580Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-11054 |
vulnerable | 2026-06-03 14:38:00.774223 |
Details available
HIGH (7.5)
RSA BSAFE Micro Edition Suite, version 4.1.6, contains an integer overflow vulnerability. A remote attacker could use maliciously constructed ASN.1 data to potentially cause a Denial Of Service.
Published: 2018-08-31T18:00:00.000Z
Updated: 2024-08-05T07:54:36.640Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.