EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x before 4.0.8 and 4.1.x before 4.1.3, RSA BSAFE Crypto-J before 6.2, RSA BSAFE SSL-J before 6.2, and RSA BSAFE SSL-C 2.8.9 and earlier do not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a certificate’s unsigned portion, a similar issue to CVE-2014-8275.

CPENameOperatorVersion
bsafege4.1.0
bsafelt4.1.3
bsafege4.0.0
bsafelt4.0.8
bsafe_ssl-cle2.8.9
bsafe_ssl-jlt6.2

Name	Operator	Version
bsafe	ge	4.1.0
bsafe	lt	4.1.3
bsafe	ge	4.0.0
bsafe	lt	4.0.8
bsafe_ssl-c	le	2.8.9
bsafe_ssl-j	lt	6.2

References

seclists.org/bugtraq/2015/Aug/84

www.securityfocus.com/bid/76377

www.securitytracker.com/id/1033297

www.securitytracker.com/id/1033298

nvd 2

cvelist 2

cve 2

ubuntucve 1

prion 1

f5 2

debiancve 1

nessus 52

veracode 2

openssl 1

ibm 52

securityvulns 9

openvas 32

seebug 1

oraclelinux 6

debian 3

osv 2

centos 2

ubuntu 1

redhat 2

aix 1

freebsd_advisory 1

altlinux 6

freebsd 1

cisco 1

slackware 1

kaspersky 1

archlinux 1

amazon 1

suse 5

mageia 1

fedora 2

oracle 1

nvd

CVE-2015-0534

2015-08-20 10:59:01

CVE-2014-8275

2015-01-09 02:59:09

cvelist

CVE-2015-0534

2015-08-20 10:00:00

CVE-2014-8275

2015-01-09 02:00:00

cve

CVE-2015-0534

2015-08-20 10:59:01

CVE-2014-8275

2015-01-09 02:59:09

ubuntucve

CVE-2014-8275

2015-01-08 00:00:00

prion

Code injection

2015-01-09 02:59:00

SOL16136 - OpenSSL vulnerability CVE-2014-8275

2015-02-12 00:00:00

K16136 : OpenSSL vulnerability CVE-2014-8275

2015-09-18 00:00:00

debiancve

CVE-2014-8275

2015-01-09 02:59:09

nessus

F5 Networks BIG-IP : OpenSSL vulnerability (K16136)

2020-10-06 00:00:00

OracleVM 3.2 : openssl (OVMSA-2015-0029) (FREAK)

2015-03-10 00:00:00

Fedora 20 : openssl-1.0.1e-41.fc20 (2015-0601)

2015-01-21 00:00:00

veracode

Protection Mechanism Bypass

2019-01-15 09:05:35

Protection Mechanism Bypass

2017-02-06 02:21:32

openssl

Vulnerability in OpenSSL CVE-2014-8275

2015-01-05 00:00:00

ibm

Security Bulletin: Vulnerabilities in OpenSSL affect IBM WebSphere Cast Iron Solution(CVE-2014-3572,CVE-2015-0204,CVE-2014-8275)

2018-06-15 07:02:34

Security Bulletin: Vulnerabilities in OpenSSL affect System x Integrated Management Module (IMM) (CVE-2015-0204, CVE-2014-3570, CVE-2014-3572, CVE-2014-8275)

2019-01-31 01:55:01

Security Bulletin: Vulnerabilities in OpenSSL affect IBM System Networking RackSwitch (CVE-2014-3570, CVE-2014-3572, CVE-2014-8275, CVE-2015-0204)

2019-01-31 01:45:01

securityvulns

ESA-2015-081: RSA BSAFE® Micro Edition Suite, Crypto-C Micro Edition, Crypto-J, SSL-J and SSL-C Multiple Vulnerabilities

2015-08-24 00:00:00

EMC RSA BSAFE multiple security vulnerabilities

2015-08-24 00:00:00

[USN-2459-1] OpenSSL vulnerabilities

2015-01-13 00:00:00

openvas

SUSE: Security Advisory (SUSE-SU-2015:0182-1)

2021-06-09 00:00:00

Debian: Security Advisory (DLA-132-1)

2023-03-08 00:00:00

Oracle: Security Advisory (ELSA-2015-3010)

2015-10-06 00:00:00

seebug

Multiple EMC RSA Products ESA-2015-081 Multiple Security Vulnerabilities

2015-08-31 00:00:00

oraclelinux

openssl security update

2015-02-26 00:00:00

openssl security update

2015-01-20 00:00:00

openssl security update

2015-04-13 00:00:00

debian

[SECURITY] [DLA 132-1] openssl security update

2015-01-11 13:16:17

[SECURITY] [DSA 3125-1] openssl security update

2015-01-11 11:05:13

[SECURITY] [DSA 3125-1] openssl security update

2015-01-11 11:05:13

osv

openssl - security update

2015-01-11 00:00:00

openssl - security update

2015-01-11 00:00:00

centos

openssl security update

2015-01-20 21:00:39

openssl security update

2015-04-14 11:25:52

ubuntu

OpenSSL vulnerabilities

2015-01-12 00:00:00

redhat

(RHSA-2015:0066) Moderate: openssl security update

2015-01-20 00:00:00

(RHSA-2015:0800) Moderate: openssl security update

2015-04-13 00:00:00

aix

Multiple Security vulnerabilities in AIX OpenSSL

2015-02-04 06:24:41

freebsd_advisory

FreeBSD-SA-15:01.openssl

2015-01-14 00:00:00

altlinux

Security fix for the ALT Linux 9 package openssl10 version 1.0.1k-alt1

2015-01-12 00:00:00

Security fix for the ALT Linux 6 package openssl10 version 1.0.0p-alt0.M60P.1

2015-04-23 00:00:00

Security fix for the ALT Linux 7 package openssl10 version 1.0.1k-alt0.M70P.1

2015-01-12 00:00:00

freebsd

OpenSSL -- multiple vulnerabilities

2015-01-08 00:00:00

cisco

Multiple Vulnerabilities in OpenSSL (January 2015) Affecting Cisco Products

2015-03-10 16:00:00

slackware

[slackware-security] openssl

2015-01-09 18:34:39

kaspersky

KLA10460 Multiple vulnerabilities in OpenSSL

2015-01-08 00:00:00

archlinux

openssl: multiple issues

2015-01-09 00:00:00

amazon

Medium: openssl

2015-01-11 12:36:00

suse

Security update for openssl (important)

2015-01-23 20:05:13

Security update for libressl (important)

2015-07-22 15:08:14

Security update for compat-openssl097g (important)

2015-03-24 00:05:09

mageia

Updated openssl packages fix security vulnerabilities

2015-01-11 22:54:28

fedora

[SECURITY] Fedora 20 Update: openssl-1.0.1e-41.fc20

2015-01-20 21:05:44

[SECURITY] Fedora 20 Update: openssl-1.0.1e-42.fc20

2015-03-23 07:18:26

oracle

Oracle Critical Patch Update - April 2015

2015-04-14 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

6.9 Medium

AI Score

Confidence

Low

0.12 Low

EPSS

Percentile

95.4%

JSON

Related for PRION:CVE-2015-0534