pkg:Maven/org.bouncycastle:bcprov-jdk15

所有已知漏洞

• HIGH8.1CVE-2020-28052Logic error in Legion of the Bouncy Castle BC Java
  >= 1.65, < 1.67
• HIGH7.5CVE-2016-1000343In Bouncy Castle JCE Provider the DSA key pair generator generates a weak private key if used with default values
  from 0, < 1.56
• HIGH7.5CVE-2016-1000342In Bouncy Castle JCE Provider ECDSA does not fully validate ASN.1 encoding of signature on verification
  from 0, < 1.56
• HIGH7.5CVE-2016-1000340The Bouncy Castle JCE Provider carry a propagation bug
  >= 1.51, < 1.56
• HIGH7.5CVE-2016-1000338bouncycastle - security update
  >= 1.38, < 1.56
• HIGH7.5CVE-2018-1000180bouncycastle - security update
  from 0, < 1.60
• HIGH7.4CVE-2016-1000344In Bouncy Castle JCE Provider the DHIES implementation allowed the use of ECB mode
  from 0, < 1.56
• HIGH7.4CVE-2016-1000352In Bouncy Castle JCE Provider the ECIES implementation allowed the use of ECB mode
  from 0, < 1.56
• MEDIUM5.9CVE-2016-1000345Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15
  from 0, < 1.56
• MEDIUM5.9CVE-2016-1000341Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15
  from 0, < 1.56
• MEDIUM5.5CVE-2023-33202Bouncy Castle Denial of Service (DoS)
  from 0, < 1.73
• MEDIUM5.3CVE-2020-26939bouncycastle - security update
  from 0, < 1.61
• MEDIUM5.3CVE-2016-1000339Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15
  from 0, < 1.56
• MEDIUM5.1CVE-2020-15522Timing based private key exposure in Bouncy Castle
  from 0, < 1.66
• LOW3.7CVE-2016-1000346In Bouncy Castle JCE Provider the other party DH public key is not fully validated
  from 0, < 1.56
• —CVE-2015-7940bouncycastle - security update
  from 0, < 1.51