← back
CVE-2020-35168

CVE-2020-35168

CVSS 4.7 MEDIUMEPSS 0.4%CWE-311
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 4.7EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
11 Jul 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected products
Dell · Dell BSAFE Crypto-C Micro Edition

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.dell.com/support/kbdoc/en-us/000181115/dsa-2020-286-dell-bsafe-crypto-c-micro-edition-4-1-5-and-dell-bsafe-micro-edition-suite-4-6-multiple-security-vulnerabilitieshttps://www.oracle.com/security-alerts/cpujul2022.html