pkg:maven/org.bouncycastle/bcprov-jdk15to18

Type maven
Namespace org.bouncycastle
Name bcprov-jdk15to18

Known advisories, vulnerabilities and fixes for org.bouncycastle/bcprov-jdk15to18 package.

Repository
https://mvnrepository.com/artifact/org.bouncycastle/bcprov-jdk15to18
High 1
Moderate 7
Low 1
Type Version Distribution # CVEs # Advisory ID Title Severity Published
Affected < 1.78 CVE-2024-34447
maven MAVEN:GHSA-4H8F-2WVX-GG5W Bouncy Castle Java Cryptography API vulnerable to DNS poisoning low 2024-05-03T18:30:37
(7 weeks ago)
Fixed = 1.78 CVE-2024-34447
maven MAVEN:GHSA-4H8F-2WVX-GG5W Bouncy Castle Java Cryptography API vulnerable to DNS poisoning low 2024-05-03T18:30:37
(7 weeks ago)
Affected < 1.66 CVE-2020-15522
maven MAVEN:GHSA-6XX3-RG99-GC3P Timing based private key exposure in Bouncy Castle moderate 2021-08-13T15:22:31
(2 years ago)
Fixed = 1.66 CVE-2020-15522
maven MAVEN:GHSA-6XX3-RG99-GC3P Timing based private key exposure in Bouncy Castle moderate 2021-08-13T15:22:31
(2 years ago)
Affected < 1.61 CVE-2020-26939
maven MAVEN:GHSA-72M5-FVVV-55M6 Observable Differences in Behavior to Error Inputs in Bouncy Castle moderate 2021-04-22T16:16:49
(3 years ago)
Fixed = 1.61 CVE-2020-26939
maven MAVEN:GHSA-72M5-FVVV-55M6 Observable Differences in Behavior to Error Inputs in Bouncy Castle moderate 2021-04-22T16:16:49
(3 years ago)
Affected >= 1.65, < 1.67 CVE-2020-28052
maven MAVEN:GHSA-73XV-W5GP-FRXH Logic error in Legion of the Bouncy Castle BC Java high 2021-04-30T16:14:15
(3 years ago)
Fixed = 1.67 CVE-2020-28052
maven MAVEN:GHSA-73XV-W5GP-FRXH Logic error in Legion of the Bouncy Castle BC Java high 2021-04-30T16:14:15
(3 years ago)
Affected < 1.78 CVE-2024-29857
maven MAVEN:GHSA-8XFC-GM6G-VGPV Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation. moderate 2024-05-14T15:32:54
(5 weeks ago)
Fixed = 1.78 CVE-2024-29857
maven MAVEN:GHSA-8XFC-GM6G-VGPV Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation. moderate 2024-05-14T15:32:54
(5 weeks ago)
Affected < 1.74 CVE-2023-33201
maven MAVEN:GHSA-HR8G-6V94-X4M9 Bouncy Castle For Java LDAP injection vulnerability moderate 2023-07-05T03:30:23
(11 months ago)
Fixed = 1.74 CVE-2023-33201
maven MAVEN:GHSA-HR8G-6V94-X4M9 Bouncy Castle For Java LDAP injection vulnerability moderate 2023-07-05T03:30:23
(11 months ago)
Affected < 1.78 CVE-2024-30172
maven MAVEN:GHSA-M44J-CFRM-G8QC Bouncy Castle crafted signature and public key can be used to trigger an infinite loop moderate 2024-05-14T15:32:54
(5 weeks ago)
Fixed = 1.78 CVE-2024-30172
maven MAVEN:GHSA-M44J-CFRM-G8QC Bouncy Castle crafted signature and public key can be used to trigger an infinite loop moderate 2024-05-14T15:32:54
(5 weeks ago)
Affected < 1.78 CVE-2024-30171
maven MAVEN:GHSA-V435-XC8X-WVR9 Bouncy Castle affected by timing side-channel for RSA key exchange ("The Marvin Attack") moderate 2024-05-14T15:32:54
(5 weeks ago)
Fixed = 1.78 CVE-2024-30171
maven MAVEN:GHSA-V435-XC8X-WVR9 Bouncy Castle affected by timing side-channel for RSA key exchange ("The Marvin Attack") moderate 2024-05-14T15:32:54
(5 weeks ago)
Affected < 1.73 CVE-2023-33202
maven MAVEN:GHSA-WJXJ-5M7G-MG7Q Bouncy Castle Denial of Service (DoS) moderate 2023-11-23T18:30:33
(7 months ago)
Fixed = 1.73 CVE-2023-33202
maven MAVEN:GHSA-WJXJ-5M7G-MG7Q Bouncy Castle Denial of Service (DoS) moderate 2023-11-23T18:30:33
(7 months ago)
Loading...