DSA-2020-114: Dell BSAFE™ Micro Edition Suite Multiple Security Vulnerabilities

Resumen: Dell BSAFE Micro Edition Suite contains remediation for multiple vulnerabilities that could be exploited by malicious users to compromise the affected system.

Este artículo se aplica a: Este artículo no se aplica a: Este artículo no está vinculado a ningún producto específico. En este artículo no se identifican todas las versiones de los productos.
Consultar otros recursos

Impacto

High

Detalles

CVE-2020-5360: Buffer Under-Read
Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems.
CVSS v3.1 Base Score: 7.5 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N)

CVE-2020-5359: Unchecked Return Value
Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to modify and corrupt the encrypted data.
CVSS v3.1 Base Score: 5.8 (AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N)

CVE-2020-5360: Buffer Under-Read
Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems.
CVSS v3.1 Base Score: 7.5 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N)

CVE-2020-5359: Unchecked Return Value
Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to modify and corrupt the encrypted data.
CVSS v3.1 Base Score: 5.8 (AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N)

Dell Technologies recomienda que todos los clientes tengan en cuenta la puntuación base CVSS y las puntuaciones temporales o de entorno relevantes que puedan afectar a la posible gravedad asociada a una determinada vulnerabilidad de seguridad.

Productos afectados y corrección

Affected products:
Dell BSAFE Micro Edition Suite releases prior to 4.5.

Remediation:
The following releases contains resolutions to these vulnerabilities:

Dell BSAFE Micro Edition Suite 4.5

Dell recommends all customers upgrade at the earliest opportunity.
Affected products:
Dell BSAFE Micro Edition Suite releases prior to 4.5.

Remediation:
The following releases contains resolutions to these vulnerabilities:

Dell BSAFE Micro Edition Suite 4.5

Dell recommends all customers upgrade at the earliest opportunity.

Información relacionada

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Aviso legal

Productos afectados

BSAFE Micro Edition Suite
Propiedades del artículo
Número de artículo: 000181098
Tipo de artículo: Dell Security Advisory
Última modificación: 15 dic 2020
Encuentra las respuestas que necesitas con la ayuda de otros usuarios de Dell
Servicios de asistencia
Comprueba si tu dispositivo está cubierto por los servicios de asistencia.