3 matches found
bouncycastle: BC-JAVA: PKIX draft CompositeVerifier accepts empty signature sequence as valid
A flaw was found in Legion of the Bouncy Castle Inc. BC-JAVA bcpkix. The PKIX draft CompositeVerifier implementation improperly accepts an empty signature sequence as a valid cryptographic signature. This issue allows a remote attacker to bypass signature verification mechanisms, potentially...
CVE-2026-5588
Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcpkix on all pkix modules, Legion of the Bouncy Castle Inc. BCPKIX-FIPS bcpkix on All pkix modules, Legion of the Bouncy Castle Inc. BCPIX-LTS bcpkix on All pkix modules. This vulnerability...
CVE-2026-5588
CVE-2026-5588 is a vulnerability in the Bouncy Castle BC-JAVA family (bcpkix, bcprov, bcpix) where a broken or risky cryptographic algorithm is used by JcaContentVerifierProviderBuilder/JcaContentVerifierProviderBuilder, affecting BC-JAVA versions prior to 1.80.2, BC-PKIX 2.0.6–2.0.11 and 2.1.7–2...