DSA-2020-114: Dell BSAFE™ Micro Edition Suite Multiple Security Vulnerabilities

Résumé: Dell BSAFE Micro Edition Suite contains remediation for multiple vulnerabilities that could be exploited by malicious users to compromise the affected system.

Cet article concerne Cet article ne concerne pas Cet article n’est associé à aucun produit spécifique. Toutes les versions du produit ne sont pas identifiées dans cet article.
Consulter d’autres ressources

Impact

High

Détails

CVE-2020-5360: Buffer Under-Read
Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems.
CVSS v3.1 Base Score: 7.5 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N)

CVE-2020-5359: Unchecked Return Value
Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to modify and corrupt the encrypted data.
CVSS v3.1 Base Score: 5.8 (AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N)

CVE-2020-5360: Buffer Under-Read
Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems.
CVSS v3.1 Base Score: 7.5 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N)

CVE-2020-5359: Unchecked Return Value
Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to modify and corrupt the encrypted data.
CVSS v3.1 Base Score: 5.8 (AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N)

Dell Technologies recommande à tous les clients de prendre en compte à la fois le score de base CVSS et les scores temporels et environnementaux pertinents qui peuvent avoir un impact sur la gravité potentielle associée à une faille de sécurité donnée.

Produits concernés et mesure corrective

Affected products:
Dell BSAFE Micro Edition Suite releases prior to 4.5.

Remediation:
The following releases contains resolutions to these vulnerabilities:

Dell BSAFE Micro Edition Suite 4.5

Dell recommends all customers upgrade at the earliest opportunity.
Affected products:
Dell BSAFE Micro Edition Suite releases prior to 4.5.

Remediation:
The following releases contains resolutions to these vulnerabilities:

Dell BSAFE Micro Edition Suite 4.5

Dell recommends all customers upgrade at the earliest opportunity.

Informations connexes

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Mention légale

Produits concernés

BSAFE Micro Edition Suite
Propriétés de l’article
Numéro d’article: 000181098
Type d’article: Dell Security Advisory
Dernière modification: 15 Dec 2020
Trouvez des réponses à vos questions auprès d’autres utilisateurs Dell
Services de support
Vérifiez si votre appareil est couvert par les services de support.