CVE-2020-35163
First published: Mon Jul 11 2022(Updated: )
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain a Use of Insufficiently Random Values Vulnerability.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell Bsafe Crypto-c-micro-edition | <4.1.5 | |
| Dell Bsafe Micro-edition-suite | <4.6 | |
| Oracle Database | =12.1.0.2 | |
| Oracle Database | =19c | |
| Oracle Database | =21c | |
| Oracle HTTP Server | =12.2.1.3.0 | |
| Oracle HTTP Server | =12.2.1.4.0 | |
| Oracle Security Service | =12.2.1.3.0 | |
| Oracle Security Service | =12.2.1.4.0 | |
| Oracle Weblogic Server Proxy Plug-in | =12.2.1.3.0 | |
| Oracle Weblogic Server Proxy Plug-in | =12.2.1.4.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Dell BSAFE vulnerability?
The vulnerability ID for this Dell BSAFE vulnerability is CVE-2020-35163.
What is the severity of CVE-2020-35163?
The severity of CVE-2020-35163 is critical with a CVSS score of 9.8.
What is the affected software?
The affected software includes Dell BSAFE Crypto-C Micro Edition versions before 4.1.5 and Dell BSAFE Micro Edition Suite versions before 4.6.
Is Oracle Database affected by CVE-2020-35163?
Yes, Oracle Database versions 12.1.0.2, 19c, and 21c are affected by CVE-2020-35163.
Where can I find more information about this vulnerability?
You can find more information about this vulnerability at the following references: [reference 1](https://www.dell.com/support/kbdoc/en-us/000181115/dsa-2020-286-dell-bsafe-crypto-c-micro-edition-4-1-5-and-dell-bsafe-micro-edition-suite-4-6-multiple-security-vulnerabilities) and [reference 2](https://www.oracle.com/security-alerts/cpujul2022.html).
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/dell
- canonical/dell bsafe crypto-c-micro-edition
- canonical/dell bsafe micro-edition-suite
- vendor/oracle
- canonical/oracle database
- version/oracle database/12.1.0.2
- version/oracle database/19c
- version/oracle database/21c
- canonical/oracle http server
- version/oracle http server/12.2.1.3.0
- version/oracle http server/12.2.1.4.0
- canonical/oracle security service
- version/oracle security service/12.2.1.3.0
- version/oracle security service/12.2.1.4.0
- canonical/oracle weblogic server proxy plug-in
- version/oracle weblogic server proxy plug-in/12.2.1.3.0
- version/oracle weblogic server proxy plug-in/12.2.1.4.0