CVE-2020-5359

CWE-544 CWE-252 — Unchecked Return Value3 documents3 sources

Severity

5.8MEDIUM

EPSS

0.4%

top 38.13%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Dell Dell Bsafe Micro Edition Suite Dell Bsafe Micro-edition-suite Oracle Database +1 more

Timeline

PublishedDec 16

Latest updateMay 24

Description

Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to modify and corrupt the encrypted data.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages4 packages

▶NVDdell/bsafe_micro-edition-suite< 4.5

▶CVEListV5dell/dell_bsafe_micro_edition_suiteunspecified — 4.5

▶NVDoracle/database4 versions+3

▶NVDoracle/weblogic11.1.1.9.0, 12.2.1.3.0, 12.2.1.4.0+2

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-7vq3-23jw-jjmm: Dell BSAFE Micro Edition Suite, versions prior to 4↗2022-05-24

▶

CVEList

CVE-2020-5359: Dell BSAFE Micro Edition Suite, versions prior to 4↗2020-12-16

▶