DSA-2025-100: Dell BSAFE™ Crypto-J Security Update
Samenvatting: Dell BSAFE Crypto-J remediation is available to address a vulnerability that could be exploited by malicious users to compromise the affected system.
Dit artikel is van toepassing op
Dit artikel is niet van toepassing op
Dit artikel is niet gebonden aan een specifiek product.
Niet alle productversies worden in dit artikel vermeld.
Impact
Medium
Gegevens
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2025-26333 |
Dell BSAFE Crypto-J generates an error message that includes sensitive information about its environment and associated data. A remote attacker could potentially exploit this vulnerability, leading to information exposure. | 5.9 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2025-26333 |
Dell BSAFE Crypto-J generates an error message that includes sensitive information about its environment and associated data. A remote attacker could potentially exploit this vulnerability, leading to information exposure. | 5.9 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
Getroffen producten en herstel
|
Product |
Affected versions |
Remediated versions |
Link |
|
Dell BSAFE Crypto-J |
Versions 6.0 through 6.3.0.1 |
Version 6.3.1 |
|
|
Dell BSAFE Crypto-J |
Version 7.0 |
Version 7.0.1 |
Dell BSAFE™ Crypto-J 7.0.1 Release Advisory |
|
Product |
Affected versions |
Remediated versions |
Link |
|
Dell BSAFE Crypto-J |
Versions 6.0 through 6.3.0.1 |
Version 6.3.1 |
|
|
Dell BSAFE Crypto-J |
Version 7.0 |
Version 7.0.1 |
Dell BSAFE™ Crypto-J 7.0.1 Release Advisory |
Tijdelijke oplossingen en risicobeperking
These issues may be mitigated by a workaround, if the customer’s implementations are deemed vulnerable. Customers with an active maintenance contract can contact BSAFE Support for details about the workarounds.
Revisiegeschiedenis
| Revision | Date | Description |
| 1.0 | 2025-03-17 | Initial release |
| 2.0 | 2025-05-15 | Updated the links in the Affected Products and Remediation table |
| 3.0 | 2025-09-25 | CVE ID, CVSS score, CVSS vector string, and vulnerability details publicly disclosed. |
| 4.0 | 2025-10-10 | Updated for enhanced presentation with no changes to content |
Verwante informatie
Juridische verklaring van afstand
Getroffen producten
BSAFE Crypto-JArtikeleigenschappen
Artikelnummer: 000296144
Artikeltype: Dell Security Advisory
Laatst aangepast: 10 okt. 2025
Vind antwoorden op uw vragen via andere Dell gebruikers
Support Services
Controleer of uw apparaat wordt gedekt door Support Services.