CVE-2020-35169

Summary

CVE	CVE-2020-35169
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2022-07-11 20:15:00 UTC
Updated	2022-10-06 16:10:00 UTC
Description	Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain an Improper Input Validation Vulnerability.

Risk And Classification

Problem Types: CWE-20

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Dell	Bsafe Crypto-c-micro-edition	All	All	All	All
Application	Dell	Bsafe Micro-edition-suite	All	All	All	All
Application	Oracle	Database	12.1.0.2	All	All	All
Application	Oracle	Database	19c	All	All	All
Application	Oracle	Database	21c	All	All	All
Application	Oracle	Http Server	12.2.1.3.0	All	All	All
Application	Oracle	Http Server	12.2.1.4.0	All	All	All
Application	Oracle	Security Service	12.2.1.3.0	All	All	All
Application	Oracle	Security Service	12.2.1.4.0	All	All	All
Application	Oracle	Weblogic Server Proxy Plug-in	12.2.1.3.0	All	All	All
Application	Oracle	Weblogic Server Proxy Plug-in	12.2.1.4.0	All	All	All

References

Reference	Source	Link	Tags
DSA-2020-286: Dell BSAFE™ Crypto-C Micro Edition 4.1.5 and Dell BSAFE Micro Edition Suite 4.6 Multiple Security Vulnerabilities \| Dell US	CONFIRM	www.dell.com
Oracle Critical Patch Update Advisory - July 2022	N/A	www.oracle.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

20274 Oracle Database 19c Critical OJVM Patch Update - July 2022