CVE-2020-5360

HIGH

Dell BSAFE Micro Edition Suite <4.5 - Buffer Under-Read

Title source: llm

Description

Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems.

References (2)

Core 2

Core References

Vendor Advisory x_refsource_misc

https://www.dell.com/support/kbdoc/en-us/000181098/dsa-2020-114-dell-bsafe-micro-edition-suite-multiple-security-vulnerabilities

Patch, Third Party Advisory x_refsource_misc

https://www.oracle.com/security-alerts/cpuApr2021.html

Scores

CVSS v3 7.5

EPSS 0.0209

EPSS Percentile 84.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-125 CWE-127

Status published

Products (14)

dell/bsafe_micro-edition-suite < 4.5

oracle/database 12.1.0.2

oracle/database 12.2.0.1

oracle/database 18c

oracle/database 19c

oracle/http_server 11.1.1.9.0

oracle/http_server 12.1.3.0

oracle/http_server 12.2.1.4.0

oracle/security_service 11.1.1.9.0

oracle/security_service 12.1.3.0

... and 4 more

Published Dec 16, 2020

Tracked Since Feb 18, 2026