Emc Rsa Bsafe Ssl-J vulnerabilities
3 known vulnerabilities affecting emc/rsa_bsafe_ssl-j.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2014-0626MEDIUMCVSS 5.0v5.0v5.1.0+2 more2014-02-18
CVE-2014-0626 [MEDIUM] CWE-310 CVE-2014-0626: The (1) JSAFE and (2) JSSE APIs in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 make it
The (1) JSAFE and (2) JSSE APIs in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 make it easier for remote attackers to bypass intended cryptographic protection mechanisms by triggering application-data processing during the TLS handshake, a time at which the data is both unencrypted and unauthenticated.
nvd
CVE-2014-0627MEDIUMCVSS 5.0v5.0v5.1.0+2 more2014-02-18
CVE-2014-0627 [MEDIUM] CWE-310 CVE-2014-0627: The SSLEngine API implementation in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows
The SSLEngine API implementation in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows remote attackers to trigger the selection of a weak cipher suite by using the wrap method during a certain incomplete-handshake state.
nvd
CVE-2014-0625MEDIUMCVSS 5.0v5.0v5.1.0+2 more2014-02-18
CVE-2014-0625 [MEDIUM] CWE-399 CVE-2014-0625: The SSLSocket implementation in the (1) JSAFE and (2) JSSE APIs in EMC RSA BSAFE SSL-J 5.x before 5.
The SSLSocket implementation in the (1) JSAFE and (2) JSSE APIs in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows remote attackers to cause a denial of service (memory consumption) by triggering application-data processing during the TLS handshake, a time at which the data is internally buffered.
nvd