What is CVE-2020-5360?

CVE-2020-5360 is a vulnerability in Dell BSAFE Micro Edition Suite versions prior to 4.5.

How severe is CVE-2020-5360?

CVE-2020-5360 has a severity rating of 7.5 (high).

Which software versions are affected by CVE-2020-5360?

Dell BSAFE Micro Edition Suite versions prior to 4.5, Oracle Database 12.1.0.2, 12.2.0.1, 18c, and 19c, Oracle HTTP Server 11.1.1.9.0, 12.1.3.0, and 12.2.1.4.0, Oracle Security Service 11.1.1.9.0, 12.1.3.0, and 12.2.1.4.0, and Oracle Weblogic Server Proxy Plug-in 11.1.1.9.0, 12.1.3.0, and 12.2.1.4.0 are affected by CVE-2020-5360.

How can an attacker exploit CVE-2020-5360?

An unauthenticated remote attacker can potentially exploit CVE-2020-5360, resulting in undefined behavior or a crash of the affected systems.

Where can I find more information about CVE-2020-5360?

You can find more information about CVE-2020-5360 on the Dell support website and the Oracle security alerts page.

Vulnerability/
CVE-2020-5360

high

7.5

CWE

125 127

16/12/2020

16/9/2024

CVE-2020-5360

First published: Wed Dec 16 2020(Updated: )

Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems.

Credit: security_alert@emc.com

Affected Software	Affected Version	How to fix
Dell BSAFE Micro Edition Suite	<4.5
Oracle Database	=12.1.0.2
Oracle Database	=12.2.0.1
Oracle Database	=18c
Oracle Database	=19c
Oracle HTTP Server	=11.1.1.9.0
Oracle HTTP Server	=12.1.3.0
Oracle HTTP Server	=12.2.1.4.0
Oracle Security Service	=11.1.1.9.0
Oracle Security Service	=12.1.3.0
Oracle Security Service	=12.2.1.4.0
Oracle WebLogic Server Proxy Plug-in	=11.1.1.9.0
Oracle WebLogic Server Proxy Plug-in	=12.1.3.0
Oracle WebLogic Server Proxy Plug-in	=12.2.1.4.0

Remedy

https://www.oracle.com/security-alerts/cpuApr2021.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2020-5360?
CVE-2020-5360 is a vulnerability in Dell BSAFE Micro Edition Suite versions prior to 4.5.
How severe is CVE-2020-5360?
CVE-2020-5360 has a severity rating of 7.5 (high).
Which software versions are affected by CVE-2020-5360?
Dell BSAFE Micro Edition Suite versions prior to 4.5, Oracle Database 12.1.0.2, 12.2.0.1, 18c, and 19c, Oracle HTTP Server 11.1.1.9.0, 12.1.3.0, and 12.2.1.4.0, Oracle Security Service 11.1.1.9.0, 12.1.3.0, and 12.2.1.4.0, and Oracle Weblogic Server Proxy Plug-in 11.1.1.9.0, 12.1.3.0, and 12.2.1.4.0 are affected by CVE-2020-5360.
How can an attacker exploit CVE-2020-5360?
An unauthenticated remote attacker can potentially exploit CVE-2020-5360, resulting in undefined behavior or a crash of the affected systems.
Where can I find more information about CVE-2020-5360?
You can find more information about CVE-2020-5360 on the Dell support website and the Oracle security alerts page.

agent/references
agent/weakness
agent/type
agent/softwarecombine
agent/severity
agent/remedy
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/dell
canonical/dell bsafe micro edition suite
vendor/oracle
canonical/oracle database
version/oracle database/12.1.0.2
version/oracle database/12.2.0.1
version/oracle database/18c
version/oracle database/19c
canonical/oracle http server
version/oracle http server/11.1.1.9.0
version/oracle http server/12.1.3.0
version/oracle http server/12.2.1.4.0
canonical/oracle security service
version/oracle security service/11.1.1.9.0
version/oracle security service/12.1.3.0
version/oracle security service/12.2.1.4.0
canonical/oracle weblogic server proxy plug-in
version/oracle weblogic server proxy plug-in/11.1.1.9.0
version/oracle weblogic server proxy plug-in/12.1.3.0
version/oracle weblogic server proxy plug-in/12.2.1.4.0