Vulnerability Description
Dell BSAFE SSL-J version 7.0 and all versions prior to 6.5, and Dell BSAFE Crypto-J versions prior to 6.2.6.1 contain an unmaintained third-party component vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability, leading to the compromise of the impacted system. This is a Critical vulnerability and Dell recommends customers to upgrade at the earliest opportunity.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Bsafe Ssl-J | < 6.5 |
| Dell | Bsafe Crypto-J | < 6.2.6.1 |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/kbdoc/en-us/000203278/dsa-2022-208-dell-bsafe-ssl-jVendor Advisory
- https://www.dell.com/support/kbdoc/en-us/000203278/dsa-2022-208-dell-bsafe-ssl-jVendor Advisory
FAQ
What is CVE-2022-34381?
CVE-2022-34381 is a vulnerability with a CVSS score of 9.1 (CRITICAL). Dell BSAFE SSL-J version 7.0 and all versions prior to 6.5, and Dell BSAFE Crypto-J versions prior to 6.2.6.1 contain an unmaintained third-party component vulnerability. An unauthenticated remote at...
How severe is CVE-2022-34381?
CVE-2022-34381 has been rated CRITICAL with a CVSS base score of 9.1/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-34381?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Bsafe Ssl-J, Dell Bsafe Crypto-J.