High severity7.5NVD Advisory· Published Sep 18, 2016· Updated May 6, 2026

CVE-2016-0923

Description

The client in EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x before 4.0.9 and 4.1.x before 4.1.5 places the weakest algorithms first in a signature-algorithm list transmitted to a server, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging server behavior in which the first algorithm is used.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/bugtraq/2016/Sep/25nvdMailing ListThird Party Advisory
www.securityfocus.com/bid/92994nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1036835nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000