| Max CVSS | 6.8 | Min CVSS | 3.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-28052 | 6.8 |
An issue was discovered in Legion of the Bouncy Castle BC Java 1.65 and 1.66. The OpenBSDBCrypt.checkPassword utility method compared incorrect data when checking the password, allowing incorrect passwords to indicate they were matching with previous
|
02-02-2023 - 22:22 | 18-12-2020 - 01:15 | |
| CVE-2019-17359 | 5.0 |
The ASN.1 parser in Bouncy Castle Crypto (aka BC Java) 1.63 can trigger a large attempted memory allocation, and resultant OutOfMemoryError error, via crafted ASN.1 data. This is fixed in 1.64.
|
07-10-2022 - 14:50 | 08-10-2019 - 14:15 | |
| CVE-2018-5382 | 3.6 |
The default BKS keystore use an HMAC that is only 16 bits long, which can allow an attacker to compromise the integrity of a BKS keystore. Bouncy Castle release 1.47 changes the BKS format to a format which uses a 160 bit HMAC instead. This applies t
|
20-04-2022 - 15:31 | 16-04-2018 - 14:29 |