CVE Vulnerabilities

CVE-2024-29171

Improper Certificate Validation

Published: Feb 12, 2025 | Modified: Mar 19, 2025
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

Dell BSAFE SSL-J, versions prior to 6.6 and versions 7.0 through 7.2, contains an Improper certificate verification vulnerability. A remote attacker could potentially exploit this vulnerability, leading to information disclosure.

Weakness

The product does not validate, or incorrectly validates, a certificate.

Affected Software

Name Vendor Start Version End Version
Bsafe_ssl-j Dell * 6.6 (excluding)
Bsafe_ssl-j Dell 7.0 (including) 7.2.1 (excluding)

Potential Mitigations

References