Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/10/14 9:58 p.m.47 views

Security Bulletin: IBM Sterling File Gateway is vulnerable to multiple issues due to Bouncy Castle

Summary IBM Sterliing File Gateway has addressed multiple security vulnerabilities in Bouncy Castle. Vulnerability Details CVEID:CVE-2016-1000343 DESCRIPTION: Bouncy Castle JCE Provider could provide weaker than expected security, caused by a flaw in the DSA key pair generator. A remote attacker...

7.5CVSS6.7AI score0.24282EPSS
Exploits0Affected Software1
vulnersOsv
vulnersOsv
added 2018/10/17 4:27 p.m.10 views

ae.teletronics.nlp:entityextraction (>=1.3 <=1.4), ai.h2o:h2o-app (>=0.1.22 <=0.1.25) +1040 more potentially affected by CVE-2016-1000352 via org.bouncycastle:bcprov-jdk15 (>=1.38 <=1.46)

org.bouncycastle:bcprov-jdk15 MAVEN version =1.38, =1.3, =0.1.22, =0.1.22, =1.0.0, =2.1.0, =1.0.1, =4.2.0, =1.1.2, =1.1.2, =1.1.2, =1.1.2, =1.1.2, =1.1.2, =1.1.2, =1.0.3, =1.3.3 and more Source cves: CVE-2016-1000352 Source advisory: OSV:GHSA-W285-WF9Q-5W69...

7.4CVSS7.2AI score0.0219EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2018/10/17 4:27 p.m.6 views

ae.vigilancer.android-run-app:ae.vigilancer.android-run-app.gradle.plugin (>=1.0.1 <=1.0.2), aero.m-click:mcpdf (>=0.2.3 <=0.2.4) +6778 more potentially affected by CVE-2016-1000352 via org.bouncycastle:bcprov-jdk15on (>=1.46 <=1.55)

org.bouncycastle:bcprov-jdk15on MAVEN version =1.46, =1.0.1, =0.2.3, =0.42.1, =1.4.1, =1.4.1, =1.4.1, =1.4.1, =1.4.1, =1.4.1, =1.4.1, =1.4.1, =1.4.1, =1.4.1, =1.4.3 and more Source cves: CVE-2016-1000352 Source advisory: OSV:GHSA-W285-WF9Q-5W69...

7.4CVSS7.1AI score0.0219EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2018/09/11 7:53 a.m.132 views

Important: Red Hat Security Advisory: Fuse 7.1 security update

An update is now available for Red Hat Fuse. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

9.8CVSS7.7AI score0.95821EPSS
Exploits7References27
CVE
CVE
added 2018/06/04 9:0 p.m.129 views

CVE-2016-1000352

In CVE-2016-1000352, the Bouncy Castle JCE Provider (BC) up to version 1.55 allowed ECB mode in ECIES, which is insecure. Affected product: BC JCE Provider

7.4CVSS7.4AI score0.0219EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2018/06/04 9:0 p.m.31 views

CVE-2016-1000352

In the Bouncy Castle JCE Provider version 1.55 and earlier the ECIES implementation allowed the use of ECB mode. This mode is regarded as unsafe and support for it has been removed from the provider...

7.4CVSS7.3AI score0.0219EPSS
Exploits0
Rows per page
Query Builder