pkg:Maven/org.bouncycastle:bcprov-jdk15to18

12 total CVEsHIGH1MEDIUM8

✅ Check your installed version

All known vulnerabilities

  • HIGH8.1CVE-2020-28052Logic error in Legion of the Bouncy Castle BC Java
    >= 1.65, < 1.67
  • MEDIUM5.9CVE-2024-30171Bouncy Castle affected by timing side-channel for RSA key exchange ("The Marvin Attack")
    from 0, < 1.78
  • MEDIUM5.9CVE-2024-34447Bouncy Castle Java Cryptography API vulnerable to DNS poisoning
    >= 1.61, < 1.78
  • MEDIUM5.5CVE-2023-33202Bouncy Castle Denial of Service (DoS)
    from 0, < 1.73
  • MEDIUM5.3CVE-2024-30172Bouncy Castle crafted signature and public key can be used to trigger an infinite loop
    >= 1.73, < 1.78
  • MEDIUM5.3CVE-2024-29857Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation.
    from 0, < 1.78
  • MEDIUM5.3CVE-2023-33201bouncycastle - security update
    from 0, < 1.74
  • MEDIUM5.3CVE-2020-26939bouncycastle - security update
    from 0, < 1.61
  • MEDIUM5.1CVE-2020-15522Timing based private key exposure in Bouncy Castle
    from 0, < 1.66
  • CVE-2026-5598Bouncy Castle Has Covert Timing Channel Vulnerability
    >= 1.71, < 1.84
  • CVE-2026-0636Bouncy Castle has an LDAP injection
    >= 1.74, < 1.84
  • CVE-2025-8885Bouncy Castle for Java on All (API modules) allows Excessive Allocation
    >= 1.0, < 1.78