Lucene search

Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15

🗓️ 17 Oct 2018 16:50:27Reported by GitHub Advisory DatabaseType

Moderate severity vulnerability in Bouncy Castle Java library for org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk1

Reporter	Title	Published	Views	Family All 57
Tenable Nessus	Debian DLA-361-1 : bouncycastle security update	9 Dec 201500:00	–	nessus
Tenable Nessus	Debian DSA-3417-1 : bouncycastle - security update	15 Dec 201500:00	–	nessus
Tenable Nessus	Oracle JDeveloper Information Disclosure Vulnerability (July 2018 CPU)	25 Jul 201800:00	–	nessus
Tenable Nessus	openSUSE Security Update : bouncycastle (openSUSE-2015-705)	5 Nov 201500:00	–	nessus
Tenable Nessus	Solaris 10 (sparc) : 142824-29	12 Mar 201800:00	–	nessus
Tenable Nessus	Fedora 22 : bouncycastle-1.50-8.fc22 (2015-7d95466eda)	4 Mar 201600:00	–	nessus
Tenable Nessus	Oracle Enterprise Manager Cloud Control Multiple Vulnerabilities (January 2017 CPU)	25 Jan 201700:00	–	nessus
Tenable Nessus	Oracle WebCenter Portal Multiple Vulnerabilities (January 2018 CPU)	12 Feb 201800:00	–	nessus
Tenable Nessus	Oracle Business Intelligence Publisher Multiple Vulnerabilities (Apr 2020 CPU)	16 Apr 202000:00	–	nessus
Tenable Nessus	Ubuntu 14.04 LTS : Bouncy Castle vulnerabilities (USN-3727-1)	2 Aug 201800:00	–	nessus

Vulners

Node

org.bouncycastle bcprov\-jdk14Range<1.51

org.bouncycastle bcprov\-jdk15Range<1.51

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2015-7940
github	www.github.com/advisories/GHSA-4mv7-cq75-3qjm
usn	www.usn.ubuntu.com/3727-1/
oracle	www.oracle.com/security-alerts/cpuapr2020.html
oracle	www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
lists	www.lists.fedoraproject.org/pipermail/package-announce/2016-January/174915.html
lists	www.lists.opensuse.org/opensuse-security-announce/2015-11/msg00012.html
rhn	www.rhn.redhat.com/errata/RHSA-2016-2035.html
rhn	www.rhn.redhat.com/errata/RHSA-2016-2036.html
web-in-security	www.web-in-security.blogspot.ca/2015/09/practical-invalid-curve-attacks.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 Oct 2018 16:27Current

8.1High risk

Vulners AI Score8.1

CVSS25

EPSS0.00963

CWE-200