CVE-2020-5360
Severity CVSS v4.0:
Pending analysis
Type:
CWE-125
Out-of-bounds Read
Publication date:
16/12/2020
Last modified:
09/12/2021
Description
Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:dell:bsafe_micro-edition-suite:*:*:*:*:*:*:*:* | 4.5 (excluding) | |
| cpe:2.3:a:oracle:database:12.1.0.2:*:*:*:enterprise:*:*:* | ||
| cpe:2.3:a:oracle:database:12.2.0.1:*:*:*:enterprise:*:*:* | ||
| cpe:2.3:a:oracle:database:18c:*:*:*:enterprise:*:*:* | ||
| cpe:2.3:a:oracle:database:19c:*:*:*:enterprise:*:*:* | ||
| cpe:2.3:a:oracle:http_server:11.1.1.9.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:oracle:http_server:12.1.3.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:oracle:security_service:11.1.1.9.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:oracle:security_service:12.1.3.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:oracle:security_service:12.2.1.4.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:11.1.1.9.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:12.1.3.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:oracle:weblogic_server_proxy_plug-in:12.2.1.4.0:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page