Vulnerability Description
RSA BSAFE Crypto-C Micro Edition versions from 4.0.0.0 before 4.0.5.4 and from 4.1.0 before 4.1.4, RSA BSAFE Micro Edition Suite versions from 4.0.0 before 4.0.13 and from 4.1.0 before 4.4 and RSA Crypto-C versions from 6.0.0 through 6.4.* are vulnerable to an out-of-bounds read vulnerability when processing DSA signature. A malicious remote user could potentially exploit this vulnerability to cause a crash in the library of the affected system.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Bsafe Crypto-C | >= 6.0.0, <= 6.4 |
| Dell | Bsafe Crypto-C-Micro-Edition | >= 4.0.0, < 4.0.5.4 |
| Dell | Bsafe Micro-Edition-Suite | >= 4.0.0, < 4.0.13 |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/kbdoc/000194054Vendor Advisory
- https://www.dell.com/support/kbdoc/000194054Vendor Advisory
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2140
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2141
FAQ
What is CVE-2019-3728?
CVE-2019-3728 is a vulnerability with a CVSS score of 7.5 (HIGH). RSA BSAFE Crypto-C Micro Edition versions from 4.0.0.0 before 4.0.5.4 and from 4.1.0 before 4.1.4, RSA BSAFE Micro Edition Suite versions from 4.0.0 before 4.0.13 and from 4.1.0 before 4.4 and RSA Cry...
How severe is CVE-2019-3728?
CVE-2019-3728 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-3728?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Bsafe Crypto-C, Dell Bsafe Crypto-C-Micro-Edition, Dell Bsafe Micro-Edition-Suite.