pkg:Maven/org.bouncycastle:bc-fips

All known vulnerabilities

• MEDIUM5.5CVE-2022-45146Garbage collection issue in BC-FJA in Java 13 and later
  from 0, < 1.0.2.4
• MEDIUM5.3CVE-2024-29857Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation.
  from 0, < 1.0.2.5
• MEDIUM5.3CVE-2020-26939bouncycastle - security update
  from 0, < 1.0.2
• MEDIUM5.1CVE-2020-15522Timing based private key exposure in Bouncy Castle
  from 0, < 1.0.2.1
• —CVE-2026-8149Bouncy Castle has a vulnerability in program files gcm128w, gcm512w
  >= 2.1.0, <= 2.1.2
• —CVE-2025-12194Bouncy Castle Vulnerable to Uncontrolled Resource Consumption
  >= 2.1.0, < 2.1.2
• —CVE-2025-9340Bouncy Castle for Java has Out-of-Bounds Write Vulnerability
  >= 2.1.0, < 2.1.1
• —CVE-2025-9341Bouncy Castle for Java has Uncontrolled Resource Consumption Vulnerability
  >= 2.1.0, < 2.1.1
• —CVE-2025-9092Bouncy Castle for Java Uncontrolled Resource Consumption Vulnerability
  >= 2.1.0, < 2.1.1
• —CVE-2025-8885Bouncy Castle for Java on All (API modules) allows Excessive Allocation
  >= 1.0.0, < 1.0.2.6