What is CVE-2023-28074?

CVE-2023-28074 is a medium-severity vulnerability in Dell Bsafe Crypto-c Micro Edition, classified under Out-of-bounds Read. CVSS score: 6.2/10. Published 2024-07-31.

How severe is CVE-2023-28074?

Medium severity. CVSS v3 base score is 6.2 out of 10.

Out-of-bounds Read in Dell Bsafe Crypto-c Micro Edition

CVE-2023-28074

Dell BSAFE Crypto-C Micro Edition, version 4.1.5, and Dell BSAFE Micro Edition Suite, versions 4.0 through 4.6.1 and version 5.0, contains an Out-of-bounds Read vulnerability. An unauthenticated attacker with local access could potentially…

Vulnerability class: Buffer Overflow

EPSS: 0.001 (16.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.2 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Dell Bsafe Crypto-c Micro Edition — versions 4.0
Dell Bsafe Micro Edition Suite — versions 5.0, 4.0

Weakness classification (CWE)

CWE-125 — Out-of-bounds Read

References

www.dell.com/support/kbdoc/en-us/000212325/dsa-2023-120-dell-bsafe-micro-editio… (vendor-advisory)

Frequently asked questions

What is CVE-2023-28074?: CVE-2023-28074 is a medium-severity vulnerability in Dell Bsafe Crypto-c Micro Edition, classified under Out-of-bounds Read. CVSS score: 6.2/10. Published 2024-07-31.
How severe is CVE-2023-28074?: Medium severity. CVSS v3 base score is 6.2 out of 10.