Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x before 4.0.6 and RSA BSAFE SSL-J before 6.1.4 do not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation, which allows man-in-the-middle attackers to obtain sensitive information or modify TLS session data via a "triple handshake attack."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EMC RSA BSAFE Micro Edition Suite和RSA BSAFE SSL-J 加密问题漏洞
Vulnerability Description
EMC RSA BSAFE是美国易安信(EMC)公司的一款安全软件产品,它支持加密算法、证书链验证和传输层安全性(TLS)加密套件等,以帮助用户实现其应用程序的各种安全目标。EMC RSA BSAFE Micro Edition Suite(MES)是其中的一套加密工具包。RSA BSAFE SSL-J是其中的一套SSL工具包。 EMC RSA BSAFE MES 4.0.0版本至4.0.5版本和RSA BSAFE SSL-J 6.1.2及之前版本中存在安全漏洞,该漏洞源于程序没有正确验证服务器端的X.5
CVSS Information
N/A
Vulnerability Type
N/A