DSA-2025-100: Dell BSAFE™ Crypto-J Security Update
Oversigt: Dell BSAFE Crypto-J remediation is available to address a vulnerability that could be exploited by malicious users to compromise the affected system.
Denne artikel gælder for
Denne artikel gælder ikke for
Denne artikel er ikke knyttet til et bestemt produkt.
Det er ikke alle produktversioner, der er identificeret i denne artikel.
Virkning
Medium
Oplysninger
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2025-26333 |
Dell BSAFE Crypto-J generates an error message that includes sensitive information about its environment and associated data. A remote attacker could potentially exploit this vulnerability, leading to information exposure. | 5.9 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2025-26333 |
Dell BSAFE Crypto-J generates an error message that includes sensitive information about its environment and associated data. A remote attacker could potentially exploit this vulnerability, leading to information exposure. | 5.9 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
Berørte produkter og udbedring
|
Product |
Affected versions |
Remediated versions |
Link |
|
Dell BSAFE Crypto-J |
Versions 6.0 through 6.3.0.1 |
Version 6.3.1 |
|
|
Dell BSAFE Crypto-J |
Version 7.0 |
Version 7.0.1 |
Dell BSAFE™ Crypto-J 7.0.1 Release Advisory |
|
Product |
Affected versions |
Remediated versions |
Link |
|
Dell BSAFE Crypto-J |
Versions 6.0 through 6.3.0.1 |
Version 6.3.1 |
|
|
Dell BSAFE Crypto-J |
Version 7.0 |
Version 7.0.1 |
Dell BSAFE™ Crypto-J 7.0.1 Release Advisory |
Løsninger og afhjælpninger
These issues may be mitigated by a workaround, if the customer’s implementations are deemed vulnerable. Customers with an active maintenance contract can contact BSAFE Support for details about the workarounds.
Revisionshistorik
| Revision | Date | Description |
| 1.0 | 2025-03-17 | Initial release |
| 2.0 | 2025-05-15 | Updated the links in the Affected Products and Remediation table |
| 3.0 | 2025-09-25 | CVE ID, CVSS score, CVSS vector string, and vulnerability details publicly disclosed. |
| 4.0 | 2025-10-10 | Updated for enhanced presentation with no changes to content |
Relaterede oplysninger
Ansvarsfraskrivelse
Berørte produkter
BSAFE Crypto-JArtikelegenskaber
Artikelnummer: 000296144
Artikeltype: Dell Security Advisory
Senest ændret: 10 okt. 2025
Find svar på dine spørgsmål fra andre Dell-brugere
Supportservices
Kontrollér, om din enhed er dækket af supportservices.