DSA-2025-100: Dell BSAFE™ Crypto-J Security Update
Zusammenfassung: Dell BSAFE Crypto-J remediation is available to address a vulnerability that could be exploited by malicious users to compromise the affected system.
Dieser Artikel gilt für
Dieser Artikel gilt nicht für
Dieser Artikel ist nicht an ein bestimmtes Produkt gebunden.
In diesem Artikel werden nicht alle Produktversionen aufgeführt.
Auswirkungen
Medium
Details
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2025-26333 |
Dell BSAFE Crypto-J generates an error message that includes sensitive information about its environment and associated data. A remote attacker could potentially exploit this vulnerability, leading to information exposure. | 5.9 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2025-26333 |
Dell BSAFE Crypto-J generates an error message that includes sensitive information about its environment and associated data. A remote attacker could potentially exploit this vulnerability, leading to information exposure. | 5.9 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
Betroffene Produkte und Korrektur
|
Product |
Affected versions |
Remediated versions |
Link |
|
Dell BSAFE Crypto-J |
Versions 6.0 through 6.3.0.1 |
Version 6.3.1 |
|
|
Dell BSAFE Crypto-J |
Version 7.0 |
Version 7.0.1 |
Dell BSAFE™ Crypto-J 7.0.1 Release Advisory |
|
Product |
Affected versions |
Remediated versions |
Link |
|
Dell BSAFE Crypto-J |
Versions 6.0 through 6.3.0.1 |
Version 6.3.1 |
|
|
Dell BSAFE Crypto-J |
Version 7.0 |
Version 7.0.1 |
Dell BSAFE™ Crypto-J 7.0.1 Release Advisory |
Workarounds und Korrekturmaßnahmen
These issues may be mitigated by a workaround, if the customer’s implementations are deemed vulnerable. Customers with an active maintenance contract can contact BSAFE Support for details about the workarounds.
Revisionsverlauf
| Revision | Date | Description |
| 1.0 | 2025-03-17 | Initial release |
| 2.0 | 2025-05-15 | Updated the links in the Affected Products and Remediation table |
| 3.0 | 2025-09-25 | CVE ID, CVSS score, CVSS vector string, and vulnerability details publicly disclosed. |
| 4.0 | 2025-10-10 | Updated for enhanced presentation with no changes to content |
Zugehörige Informationen
Rechtlicher Hinweis
Betroffene Produkte
BSAFE Crypto-JArtikeleigenschaften
Artikelnummer: 000296144
Artikeltyp: Dell Security Advisory
Zuletzt geändert: 10 Okt. 2025
Antworten auf Ihre Fragen erhalten Sie von anderen Dell NutzerInnen
Support Services
Prüfen Sie, ob Ihr Gerät durch Support Services abgedeckt ist.