First published: Fri Feb 10 2023(Updated: )
Dell BSAFE SSL-J, versions before 6.5 and version 7.0 contain a debug message revealing unnecessary information vulnerability. This may lead to disclosing sensitive information to a locally privileged user. .
Credit: security_alert@emc.com security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell BSAFE SSL-J | <6.5 | |
Dell BSAFE SSL-J | =7.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-34364 is a vulnerability in Dell BSAFE SSL-J that can reveal unnecessary information when used in debug mode.
An attacker could potentially exploit CVE-2022-34364 and gain access to private information if Dell BSAFE SSL-J is used in debug mode.
CVE-2022-34364 has a severity rating of 4.4, which is considered medium.
Versions 6.5 and 7.0 of Dell BSAFE SSL-J are affected by CVE-2022-34364.
To fix CVE-2022-34364, it is recommended to update Dell BSAFE SSL-J to a version that is not affected by the vulnerability.