Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.7 views

Astra Linux - уязвимость в bouncycastle

Bouncy Castle for Java before version 1.73 contains a potential Denial of Service DoS issue within the Bouncy Castle org.bouncycastle.openssl.PEMParser class. This class parses OpenSSL PEM-encoded streams containing X.509 certificates, PKCS8-encoded keys, and PKCS7 objects. Parsing a file that...

5.5CVSS6.7AI score0.00144EPSS
Exploits1References2
OSV
OSVadded 2026/04/27 6:33 p.m.1 views

JLSEC-2026-232 openssl-src contains Double free after calling `PEM_read_bio_ex`

The function PEMreadbioex reads a PEM file from a BIO and parses and decodes the "name" e.g. "CERTIFICATE", any header data and the payload data. If the function succeeds then the "nameout", "header" and "data" arguments are populated with pointers to buffers containing the relevant decoded data...

7.5CVSS7.4AI score0.00147EPSS
Exploits0References8
RedHat Linux
RedHat Linuxadded 2024/05/30 8:24 p.m.1 views

bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class

A flaw was found in Bouncy Castle for the Java pkix module, which is vulnerable to a potential Denial of Service DoS issue within the org.bouncycastle.openssl.PEMParser class. This class parses OpenSSL PEM encoded streams containing X.509 certificates, PKCS8 encoded keys, and PKCS7 objects. Parsi...

5.5CVSS6.8AI score0.00144EPSS
Exploits1References5
SUSE CVE
SUSE CVEadded 2023/11/25 2:4 a.m.1 views

SUSE CVE-2023-33202

Bouncy Castle for Java before 1.73 contains a potential Denial of Service DoS issue within the Bouncy Castle org.bouncycastle.openssl.PEMParser class. This class parses OpenSSL PEM encoded streams containing X.509 certificates, PKCS8 encoded keys, and PKCS7 objects. Parsing a file that has crafte...

5.5CVSS7AI score0.00144EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2023/11/23 12:0 a.m.2 views

PT-2023-7206 · Unknown +2 · Bouncy Castle For Java +2

Name of the Vulnerable Software and Affected Versions: Bouncy Castle for Java versions prior to 1.73 BC-FJA versions prior to 1.0.2.4 Description: The issue is related to insufficient input validation in the Bouncy Castle org.bouncycastle.openssl.PEMParser class, which parses OpenSSL PEM encoded...

5.5CVSS7.2AI score0.00144EPSS
Exploits1References26
OSV
OSVadded 2023/02/08 8:15 p.m.2 views

AZL-37892 CVE-2022-4450 affecting package hvloader for versions less than 1.0.1-4

The function PEMreadbioex reads a PEM file from a BIO and parses and decodes the "name" e.g. "CERTIFICATE", any header data and the payload data. If the function succeeds then the "nameout", "header" and "data" arguments are populated with pointers to buffers containing the relevant decoded data...

7.5CVSS6.8AI score0.00147EPSS
Exploits0References1
Rows per page
Query Builder