DSA-2025-100: Dell BSAFE™ Crypto-J Security Update
Riepilogo: Dell BSAFE Crypto-J remediation is available to address a vulnerability that could be exploited by malicious users to compromise the affected system.
Questo articolo si applica a
Questo articolo non si applica a
Questo articolo non è legato a un prodotto specifico.
Non tutte le versioni del prodotto sono identificate in questo articolo.
Impatto
Medium
Dettagli
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2025-26333 |
Dell BSAFE Crypto-J generates an error message that includes sensitive information about its environment and associated data. A remote attacker could potentially exploit this vulnerability, leading to information exposure. | 5.9 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2025-26333 |
Dell BSAFE Crypto-J generates an error message that includes sensitive information about its environment and associated data. A remote attacker could potentially exploit this vulnerability, leading to information exposure. | 5.9 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
Prodotti interessati e correzione
|
Product |
Affected versions |
Remediated versions |
Link |
|
Dell BSAFE Crypto-J |
Versions 6.0 through 6.3.0.1 |
Version 6.3.1 |
|
|
Dell BSAFE Crypto-J |
Version 7.0 |
Version 7.0.1 |
Dell BSAFE™ Crypto-J 7.0.1 Release Advisory |
|
Product |
Affected versions |
Remediated versions |
Link |
|
Dell BSAFE Crypto-J |
Versions 6.0 through 6.3.0.1 |
Version 6.3.1 |
|
|
Dell BSAFE Crypto-J |
Version 7.0 |
Version 7.0.1 |
Dell BSAFE™ Crypto-J 7.0.1 Release Advisory |
Soluzioni alternative e mitigazioni
These issues may be mitigated by a workaround, if the customer’s implementations are deemed vulnerable. Customers with an active maintenance contract can contact BSAFE Support for details about the workarounds.
Cronologia delle revisioni
| Revision | Date | Description |
| 1.0 | 2025-03-17 | Initial release |
| 2.0 | 2025-05-15 | Updated the links in the Affected Products and Remediation table |
| 3.0 | 2025-09-25 | CVE ID, CVSS score, CVSS vector string, and vulnerability details publicly disclosed. |
| 4.0 | 2025-10-10 | Updated for enhanced presentation with no changes to content |
Informazioni correlate
Dichiarazione di non responsabilità
Prodotti interessati
BSAFE Crypto-JProprietà dell'articolo
Numero articolo: 000296144
Tipo di articolo: Dell Security Advisory
Ultima modifica: 10 ott 2025
Trova risposta alle tue domande dagli altri utenti Dell
Support Services
Verifica che il dispositivo sia coperto dai Servizi di supporto.