Full Report
Cisco Talos’ Vulnerability Discovery & Research team recently disclosed three vulnerabilities in Dell BSAFE, two in Fade In screenwriting software, and one in Trufflehog The vulnerabilities mentioned in this blog post have been patched by their respective vendors, all in adherence to Cisco’s third-party vulnerability disclosure
Analysis Summary
As a vulnerability research specialist, here is the summary of the disclosed vulnerabilities in an actionable format.
***
# Vulnerability: Dell BSAFE Crypto-C Integer Overflow/Underflow and Stack Overflow
## CVE Details
- CVE ID: CVE-2019-3728 (Multiple findings mapped to this existing CVE)
- CVSS Score: Information pending, but severity is implied via impact (DoS, Out-of-bounds read).
- CWE: Integer Overflow/Underflow, Buffer Overflow (Implied for stack overflow)
## Affected Systems
- Products: Dell BSAFE Crypto-C module
- Versions: Vulnerable versions were added to an existing CVE; specific version range is not detailed, but the product is noted as being End of Service (EOS).
- Configurations: Processing specially crafted ASN.1 records.
## Vulnerability Description
Three distinct vulnerabilities were found in the Dell BSAFE Crypto-C module when processing ASN.1 records:
1. **Integer Overflow (TALOS-2025-2140):** An input of a specially crafted ASN.1 record can lead to an integer overflow condition.
2. **Integer Underflow (TALOS-2025-2141):** An input of a specially crafted ASN.1 record can lead to an integer underflow condition.
3. **Stack Overflow (TALOS-2025-2142):** An input of a specially crafted ASN.1 record can lead to a stack overflow.
Both the Integer Overflow and Underflow conditions can result in an **out-of-bounds read**. The Stack Overflow can lead to **Denial of Service (DoS)**.
## Exploitation
- Status: Patched as of disclosure, exploit status not specified (Assumed unexploited in the wild unless otherwise noted).
- Complexity: Medium (Requires constructing a specific malformed ASN.1 record).
- Attack Vector: Depends on the application incorporating BSAFE, but the trigger mechanism is data processing.
## Impact
- Confidentiality: High (Potential for sensitive information disclosure via out-of-bounds read, though not explicitly confirmed across all three findings).
- Integrity: Medium/High (Potential corruption due to memory access violations).
- Availability: Medium (DoS via stack overflow).
## Remediation
### Patches
- **Specific patches are not detailed in this overview.** Since the product is at End of Service (EOS), remediation relies on upgrading or discontinuing use. Users must consult Dell/vendor advisories related to **CVE-2019-3728** for patch guidance specific to their integrations.
### Workarounds
- No specific workarounds were provided in the summary. Mitigation generally requires ensuring that input validation protects against malformed ASN.1 structures if an upgrade is impossible, although this is inherently difficult when using cryptographic libraries.
## Detection
- Utilizing Snort rule sets updated with the latest advisories from Cisco Talos may provide detection capabilities.
- Monitoring for application crashes or unusual memory behavior when processing external or untrusted ASN.1 data streams.
## References
- Vendor Advisories: Refer to Dell/vendor advisories associated with **CVE-2019-3728**.
- Relevant Links: hxxps://blog.talosintelligence.com/
***
# Vulnerability: Fade In Out-of-Bounds Write and Use-After-Free
## CVE Details (OOB Write)
- CVE ID: CVE-2025-53855
- CVSS Score: Information pending.
- CWE: Out-of-bounds Write (Implied)
## Affected Systems
- Products: GCC Productions Inc. Fade In (Screenwriting Software)
- Versions: 4.2.0
- Configurations: Parsing a specially crafted `.fadein` file.
## Vulnerability Description (OOB Write)
An out-of-bounds write vulnerability exists in the XML parser functionality. Processing a malicious `.fadein` file allows an attacker to write data outside of the allocated memory buffer.
## Exploitation (OOB Write)
- Status: Patched.
- Complexity: Medium (Requires crafting a specific input file).
- Attack Vector: Local (User must open the crafted file).
## Impact (OOB Write)
- Confidentiality: Potential
- Integrity: High (Arbitrary write capability)
- Availability: High (Crash/DoS)
## Remediation (OOB Write)
### Patches
- Users should upgrade Fade In beyond version 4.2.0 to receive the patch addressing CVE-2025-53855.
### Workarounds
- Avoid opening `.fadein` files from untrusted sources.
## Detection (OOB Write)
- Dependent on the host system's security monitoring capabilities when executing the file opening process within Fade In.
## References (OOB Write)
- Relevant Links: hxxps://talosintelligence.com/vulnerability_reports/TALOS-2025-2250
***
## CVE Details (UAF)
- CVE ID: CVE-2025-53814
- CVSS Score: Information pending.
- CWE: Use-After-Free (Implied)
## Affected Systems
- Products: GCC Productions Inc. Fade In (Screenwriting Software)
- Versions: 4.2.0
- Configurations: Parsing a specially crafted `.xml` file.
## Vulnerability Description (UAF)
A use-after-free vulnerability exists in the XML parser functionality. Processing a malicious `.xml` file can lead to heap-based memory corruption.
## Exploitation (UAF)
- Status: Patched.
- Complexity: Medium/High (UAF exploitation can be complex).
- Attack Vector: Local (User must open the crafted file).
## Impact (UAF)
- Confidentiality: Potential
- Integrity: High (Memory corruption leading to control flow hijacking)
- Availability: High (Crash/DoS)
## Remediation (UAF)
### Patches
- Users should upgrade Fade In beyond version 4.2.0 to receive the patch addressing CVE-2025-53814.
### Workarounds (UAF)
- Avoid opening `.xml` files from untrusted sources.
## Detection (UAF)
- Dependent on the host system's security monitoring capabilities when executing the file opening process within Fade In.
## References (UAF)
- Relevant Links: hxxps://talosintelligence.com/vulnerability_reports/TALOS-2025-2252
***
# Vulnerability: TruffleHog Arbitrary Code Execution via Git Functionality
## CVE Details
- CVE ID: CVE-2025-41390
- CVSS Score: Information pending (Implied High due to RCE).
- CWE: External Control of Assumed-Immutable Web Parameter (Implied based on Git interaction causing RCE).
## Affected Systems
- Products: TruffleHog (Sensitive information detection system)
- Versions: 3.90.2
- Configurations: Interacting with a specially crafted Git repository.
## Vulnerability Description
An arbitrary code execution (ACE) vulnerability exists in the Git functionality of TruffleHog. If the application processes or interacts with a malicious/specially crafted Git repository provided by an attacker, it can lead to the execution of arbitrary code on the host running TruffleHog.
## Exploitation
- Status: Patched.
- Complexity: Medium (Requires attacker to control the repository structure).
- Attack Vector: Network/Local (If the repository is cloned or provided to the monitoring system).
## Impact
- Confidentiality: High
- Integrity: High
- Availability: High
## Remediation
### Patches
- Users must upgrade TruffleHog to a version subsequent to 3.90.2.
### Workarounds
- Restrict the input sources used by TruffleHog to only trusted or internally managed Git repositories until patching is complete.
## Detection
- Monitor system processes spawned by TruffleHog that might indicate execution of unexpected shell commands, especially during repository initialization or processing steps.
## References
- Vendor Advisories: Refer to the accompanying article on the Tuffle Security website.
- Relevant Links: hxxps://talosintelligence.com/vulnerability_reports/TALOS-2025-2243