Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-1533

Malicious code in bioql PyPI...

7.5CVSS6.7AI score0.011EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2024/08/08 5:23 p.m.5 views

org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

A vulnerability was found in Bouncy Castle. An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters...

7.5CVSS7.3AI score0.011EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/07/22 12:0 a.m.4 views

The vulnerabilities in the files ECCurve.java and ECCurve.cs of the EC module verification library in the Math library of Bouncy Castle Crypto Package For Java (BC Java), Bouncy Castle Java Long Term Stable (LTS) (BC-LJA), Bouncy Castle FIPS Java API (BC-FJA), and Bouncy Castle Cryptography Library For .NET allow a hacker to cause a service failure.

The vulnerabilities of the ECCurve.java and ECCurve.cs files from the Math key verification library of the EC module in the Bouncy Castle Crypto Package for Java BC Java, Bouncy Castle Java Long Term Stable LTS BC-LJA, Bouncy Castle FIPS Java API BC-FJA, and Bouncy Castle Cryptography Library For...

5.3CVSS6.7AI score0.011EPSS
Exploits0References5Affected Software4
RedHat Linux
RedHat Linux
added 2024/07/11 12:28 p.m.7 views

org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

A vulnerability was found in Bouncy Castle. An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters...

7.5CVSS7.3AI score0.011EPSS
Exploits0References4
Snyk
Snyk
added 2024/04/11 8:6 a.m.4 views

Allocation of Resources Without Limits or Throttling

Overview BouncyCastle is a C implementation of cryptographic algorithms. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling in the solveQuadraticEquation function used for certificate verification in ECCurve.java. Passing a large f2m parameter...

7.5CVSS6.9AI score0.011EPSS
Exploits0References2
Rows per page
Query Builder