CVE-2020-26185: Input Validation
First published: Wed Jun 01 2022(Updated: )
Dell BSAFE Micro Edition Suite, versions prior to 4.5.1, contain a Buffer Over-Read Vulnerability.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell Bsafe Micro-edition-suite | <4.5.1 | |
| Oracle Database | =12.1.0.2 | |
| Oracle Database | =19c | |
| Oracle Database | =21c | |
| Oracle HTTP Server | =12.2.1.3.0 | |
| Oracle HTTP Server | =12.2.1.4.0 | |
| Oracle Security Service | =12.2.1.3.0 | |
| Oracle Security Service | =12.2.1.4.0 | |
| Oracle Weblogic Server Proxy Plug-in | =12.2.1.3.0 | |
| Oracle Weblogic Server Proxy Plug-in | =12.2.1.4.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Dell BSAFE Micro Edition Suite vulnerability?
The vulnerability ID for this Dell BSAFE Micro Edition Suite vulnerability is CVE-2020-26185.
What is the severity of CVE-2020-26185?
The severity of CVE-2020-26185 is high with a severity value of 7.5.
What is affected by CVE-2020-26185?
Dell BSAFE Micro Edition Suite versions prior to 4.5.1, Oracle Database versions 12.1.0.2, 19c, and 21c, Oracle HTTP Server versions 12.2.1.3.0 and 12.2.1.4.0, Oracle Security Service versions 12.2.1.3.0 and 12.2.1.4.0, and Oracle Weblogic Server Proxy Plug-in versions 12.2.1.3.0 and 12.2.1.4.0 are affected by CVE-2020-26185.
How can I fix the Dell BSAFE Micro Edition Suite vulnerability?
To fix the Dell BSAFE Micro Edition Suite vulnerability, update to version 4.5.1 or later.
Where can I find more information about CVE-2020-26185?
You can find more information about CVE-2020-26185 at the following references: [Dell Security Advisory DSA-2020-245](https://www.dell.com/support/article/en-us/sln322935/dsa-2020-245-dell-bsafe-micro-edition-suite-multiple-vulnerabilities?lang=en) and [Oracle Security Alerts - July 2022](https://www.oracle.com/security-alerts/cpujul2022.html).
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/dell
- canonical/dell bsafe micro-edition-suite
- vendor/oracle
- canonical/oracle database
- version/oracle database/12.1.0.2
- version/oracle database/19c
- version/oracle database/21c
- canonical/oracle http server
- version/oracle http server/12.2.1.3.0
- version/oracle http server/12.2.1.4.0
- canonical/oracle security service
- version/oracle security service/12.2.1.3.0
- version/oracle security service/12.2.1.4.0
- canonical/oracle weblogic server proxy plug-in
- version/oracle weblogic server proxy plug-in/12.2.1.3.0
- version/oracle weblogic server proxy plug-in/12.2.1.4.0