CVE-2025-26333 | THREATINT

Description

Dell BSAFE Crypto-J generates an error message that includes sensitive information about its environment and associated data. A remote attacker could potentially exploit this vulnerability, leading to information exposure.

PUBLISHED Reserved 2025-02-07 | Published 2025-09-25 | Updated 2025-10-24 | Assigner dell

MEDIUM: 5.9CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Problem types

CWE-209: Generation of Error Message Containing Sensitive Information

Product status

Default status

unaffected

6.0 (semver) before 6.3.1

affected

Default status

unaffected

7.0 (semver) before 7.0.1

affected

References

www.dell.com/...2025-100-dell-bsafe-crypto-j-security-update vendor-advisory

cve.org (CVE-2025-26333)

nvd.nist.gov (CVE-2025-26333)

Download JSON