EMC RSA BSAFE Micro Edition Suite Vulnerability in Certificate Chain Validation
CVE-2014-0636

Currently unrated

Key Information:

Vendor: Dell
Status: Bsafe Micro-edition-suite
Vendor: CVE Published:; 11 April 2014

Summary

The RSA BSAFE Micro Edition Suite by EMC suffers from a vulnerability where it fails to properly validate X.509 certificate chains. This weakness opens a loophole for man-in-the-middle attackers to spoof SSL servers through the manipulation of certificate chains, potentially allowing unauthorized access to sensitive data. This issue affects versions 3.2.x prior to 3.2.6 and 4.0.x prior to 4.0.5, highlighting the need for timely updates to ensure robust security measures.

References

http://archives.neohapsis.com/archives/bugtraq/2014-04/00...

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/66791

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Apr 11, 2014
Vulnerability Reserved
Jan 2, 2014