MEDIUM🇵🇱 Wersja polska

CVE-2020-35164

CVSS 6.7v3.1pub. 2022-07-11upd. 2024-11-21

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.

CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
  • Dell Bsafe Crypto C Micro Edition

    APP
    Dell
    < 4.1.5
  • Dell Bsafe Micro Edition Suite

    APP
    Dell
    < 4.6
  • Oracle Database

    APP
    Oracle
    12.1.0.219c21c
  • Oracle HTTP Server

    APP
    Oracle
    12.2.1.3.012.2.1.4.0
  • Oracle Security Service

    APP
    Oracle
    12.2.1.3.012.2.1.4.0
  • Oracle Weblogic Server Proxy Plug In

    APP
    Oracle
    12.2.1.3.012.2.1.4.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2021-40438CRITICAL9.0⚠ KEVten sam produkt

A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remot...

CVE-2026-21962CRITICAL10.0PL ✓ten sam produkt

Auth Bypass w Oracle HTTP Server i WebLogic Server Proxy Plug-in (CVSS 10.0)

CVE-2020-35169CRITICAL9.1ten sam produkt

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before ...

CVE-2022-22720CRITICAL9.8ten sam produkt

Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding...

CVE-2022-22721CRITICAL9.1ten sam produkt

If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32 bit systems an ...