First published: Thu Sep 12 2019(Updated: )
RSA BSAFE Crypto-C Micro Edition, versions prior to 4.0.5.3 (in 4.0.x) and versions prior to 4.1.3.3 (in 4.1.x), and RSA Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) versions prior to 4.1.6.1 (in 4.1.x) and versions prior to 4.3.3 (4.2.x and 4.3.x) are vulnerable to an Information Exposure Through Timing Discrepancy. A malicious remote user could potentially exploit this vulnerability to extract information leaving data at risk of exposure.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell Bsafe Crypto-c-micro-edition | >=4.0<4.0.5.3 | |
Dell Bsafe Micro-edition-suite | >=4.0.0<4.0.11 | |
Dell Bsafe Micro-edition-suite | >=4.1.0<4.1.6.1 | |
Dell Bsafe Micro-edition-suite | >=4.2.0<4.3.3 | |
Emc Rsa Bsafe Crypto-c | >=4.1<4.1.3.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-3732 is a vulnerability in RSA BSAFE Crypto-C Micro Edition and RSA Micro Edition Suite that allows for information exposure.
CVE-2019-3732 has a severity rating of high with a CVSS score of 7.5.
RSA BSAFE Crypto-C Micro Edition versions prior to 4.0.5.3 (in 4.0.x) and versions prior to 4.1.3.3 (in 4.1.x), and RSA Micro Edition Suite versions prior to 4.0.11 (in 4.0.x), versions prior to 4.1.6.1 (in 4.1.x), and versions prior to 4.3.3 (4.2.x and 4.3.x) are affected.
To fix CVE-2019-3732, it is recommended to update to RSA BSAFE Crypto-C Micro Edition version 4.0.5.3 (or later) or 4.1.3.3 (or later), and RSA Micro Edition Suite version 4.0.11 (or later), 4.1.6.1 (or later), or 4.3.3 (or later).
More information about CVE-2019-3732 can be found at the following link: [Link](https://www.dell.com/support/kbdoc/000194054)