Vulnerability Description
RSA BSAFE Crypto-C Micro Edition, versions prior to 4.0.5.3 (in 4.0.x) and versions prior to 4.1.3.3 (in 4.1.x), and RSA Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) versions prior to 4.1.6.1 (in 4.1.x) and versions prior to 4.3.3 (4.2.x and 4.3.x) are vulnerable to an Information Exposure Through Timing Discrepancy. A malicious remote user could potentially exploit this vulnerability to extract information leaving data at risk of exposure.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Bsafe Crypto-C-Micro-Edition | >= 4.0, < 4.0.5.3 |
| Dell | Bsafe Micro-Edition-Suite | >= 4.0.0, < 4.0.11 |
| Emc | Rsa Bsafe Crypto-C | >= 4.1, < 4.1.3.3 |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/kbdoc/000194054Vendor Advisory
- https://www.dell.com/support/kbdoc/000194054Vendor Advisory
FAQ
What is CVE-2019-3732?
CVE-2019-3732 is a vulnerability with a CVSS score of 7.5 (HIGH). RSA BSAFE Crypto-C Micro Edition, versions prior to 4.0.5.3 (in 4.0.x) and versions prior to 4.1.3.3 (in 4.1.x), and RSA Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) versions prior to 4.1....
How severe is CVE-2019-3732?
CVE-2019-3732 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-3732?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Bsafe Crypto-C-Micro-Edition, Dell Bsafe Micro-Edition-Suite, Emc Rsa Bsafe Crypto-C.