LDAP Injection
org.bouncycastle is vulnerable to LDAP injection. The vulnerability exists because the engineGetCRLs function in X509LDAPCertStoreSpi.java does not properly validate the X.509 certificates, allowing an attacker to insert malicious certificate's subject name with special characters such as...