Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:46624
HistoryApr 25, 2024 - 3:54 p.m.

Denial Of Service (DoS)

2024-04-2515:54:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
20
denial of service
bouncy castle
ed25519

AI Score

6.3

Confidence

High

EPSS

0

Percentile

9.0%

Bouncy Castle is vulnerable to an infinite loop. The vulnerability is due to insufficient verification of signatures and public keys during Ed25519 verification, allowing attackers to trigger a denial of service (DoS) due to the infinite loop.