Article Number: 000214287
Medium
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
---|---|---|---|
CVE-2023-28077 | Dell BSAFE SSL-J, versions prior to 6.5, and versions 7.0 and 7.1 contain a debug message revealing unnecessary information vulnerability. This may lead to disclosing sensitive information to a locally privileged user. | 4.4 | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
---|---|---|---|
CVE-2023-28077 | Dell BSAFE SSL-J, versions prior to 6.5, and versions 7.0 and 7.1 contain a debug message revealing unnecessary information vulnerability. This may lead to disclosing sensitive information to a locally privileged user. | 4.4 | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
Product | Affected Version(s) | Updated Version(s) | Link to Update |
---|---|---|---|
Dell BSAFE SSL-J | 6.0.x - 6.5 7.0 7.1 |
6.5.1 7.1.1 |
How To Request a Dell BSAFE product download |
Product | Affected Version(s) | Updated Version(s) | Link to Update |
---|---|---|---|
Dell BSAFE SSL-J | 6.0.x - 6.5 7.0 7.1 |
6.5.1 7.1.1 |
How To Request a Dell BSAFE product download |
Workarounds or mitigations may exist based on individual use case and usage of the product. Customers with an active BSAFE SSL-J maintenance contract should contact Dell BSAFE Support at bsafe.support@dell.com, or bsafe.support.japan@dell.com for further details.
Revision | Date | Description |
---|---|---|
1.0 | 05-19-2023 | Initial Release |
2.0 | 07-19-2023 | Updated "Affected Products and Remediation" section |
3.0 | 09-14-2023 | Updated "Proprietary Code " section |
4.0 | 01-12-2024 | Updated the detailed public description |
5.0 | 01-12-2024 | Formatting update without any change to content |
6.0 | 01-12-2024 | Updated the detailed public description |
BSAFE, BSAFE SSL-J
12 Jan 2024
7
Dell Security Advisory