Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-g6rx-6wfx-gj74

Опубликовано: 22 авг. 2025
Источник: github
Github: Прошло ревью
CVSS4: 0

Описание

Bouncy Castle for Java has Out-of-Bounds Write Vulnerability

Out-of-bounds Write vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java bc-fips on All (API modules). This vulnerability is associated with program files org/bouncycastle/jcajce/provider/BaseCipher.

This issue affects Bouncy Castle for Java: from BC-FJA 2.1.0 through 2.1.0.

Ссылки

Пакеты

Наименование

org.bouncycastle:bc-fips

maven
Затронутые версииВерсия исправления

= 2.1.0

2.1.1

EPSS

Процентиль: 4%
0.0002
Низкий

0 Low

CVSS4

CVE ID

CVE-2025-9340

Дефекты

CWE-787

Связанные уязвимости

redhat логотип

CVE-2025-9340

CVSS3: 5.9
redhat
26 дней назад

Out-of-bounds Write vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java bc-fips on All (API modules). This vulnerability is associated with program files org/bouncycastle/jcajce/provider/BaseCipher. This issue affects Bouncy Castle for Java: from BC-FJA 2.1.0 through 2.1.0.

nvd логотип

CVE-2025-9340

nvd
26 дней назад

Out-of-bounds Write vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java bc-fips on All (API modules). This vulnerability is associated with program files org/bouncycastle/jcajce/provider/BaseCipher. This issue affects Bouncy Castle for Java: from BC-FJA 2.1.0 through 2.1.0.

EPSS

Процентиль: 4%
0.0002
Низкий

0 Low

CVSS4

CVE ID

CVE-2025-9340

Дефекты

CWE-787