RSA BSAFE Crypto-C Micro Edition, all versions prior to 4.1.4, is vulnerable to three (3) different Improper Clearing of Heap Memory Before Release vulnerability, also known as 'Heap Inspection vulnerability'. A malicious remote user could potentially exploit this vulnerability to extract information leaving data at risk of exposure.

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.00054
Percentile: 0.16887

CVSS Scoring

Mapped CWE(s)

• CWE-316 : Cleartext Storage of Sensitive Information in Memory
• CWE-459 : Incomplete Cleanup

Affected Products

• cpe:2.3:a:dell:bsafe_crypto-c-micro-edition:*:*:*:*:*:*:*:*
• cpe:2.3:a:emc:rsa_bsafe_crypto-c:*:*:*:*:*:*:*:*

← Back to Home