DSA-2025-100: Dell BSAFE™ Crypto-J Security Update
Сводка: Dell BSAFE Crypto-J remediation is available to address a vulnerability that could be exploited by malicious users to compromise the affected system.
Данная статья применяется к
Данная статья не применяется к
Эта статья не привязана к какому-либо конкретному продукту.
В этой статье указаны не все версии продуктов.
Влияние
Medium
Подробные сведения
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2025-26333 |
Dell BSAFE Crypto-J generates an error message that includes sensitive information about its environment and associated data. A remote attacker could potentially exploit this vulnerability, leading to information exposure. | 5.9 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2025-26333 |
Dell BSAFE Crypto-J generates an error message that includes sensitive information about its environment and associated data. A remote attacker could potentially exploit this vulnerability, leading to information exposure. | 5.9 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
Затронутые продукты и исправление
|
Product |
Affected versions |
Remediated versions |
Link |
|
Dell BSAFE Crypto-J |
Versions 6.0 through 6.3.0.1 |
Version 6.3.1 |
|
|
Dell BSAFE Crypto-J |
Version 7.0 |
Version 7.0.1 |
Dell BSAFE™ Crypto-J 7.0.1 Release Advisory |
|
Product |
Affected versions |
Remediated versions |
Link |
|
Dell BSAFE Crypto-J |
Versions 6.0 through 6.3.0.1 |
Version 6.3.1 |
|
|
Dell BSAFE Crypto-J |
Version 7.0 |
Version 7.0.1 |
Dell BSAFE™ Crypto-J 7.0.1 Release Advisory |
Временные решения и снижение риска
These issues may be mitigated by a workaround, if the customer’s implementations are deemed vulnerable. Customers with an active maintenance contract can contact BSAFE Support for details about the workarounds.
История изменений
| Revision | Date | Description |
| 1.0 | 2025-03-17 | Initial release |
| 2.0 | 2025-05-15 | Updated the links in the Affected Products and Remediation table |
| 3.0 | 2025-09-25 | CVE ID, CVSS score, CVSS vector string, and vulnerability details publicly disclosed. |
| 4.0 | 2025-10-10 | Updated for enhanced presentation with no changes to content |
Связанная информация
Правовая оговорка
Затронутые продукты
BSAFE Crypto-JСвойства статьи
Номер статьи: 000296144
Тип статьи: Dell Security Advisory
Последнее изменение: 10 Oct 2025
Получите ответы на свои вопросы от других пользователей Dell
Услуги технической поддержки
Проверьте, распространяются ли на ваше устройство услуги технической поддержки.