Skip to main content

Legion Of The Bouncy Castle

1 CVEs product

Monthly

CVE-2020-26939 Maven MEDIUM PATCH This Month

In Legion of the Bouncy Castle BC before 1.61 and BC-FJA before 1.0.1.2, attackers can obtain sensitive information about a private exponent because of Observable Differences in Behavior to Error. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Fips Java Api Legion Of The Bouncy Castle
NVD GitHub
CVSS 3.1
5.3
EPSS
0.9%
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

In Legion of the Bouncy Castle BC before 1.61 and BC-FJA before 1.0.1.2, attackers can obtain sensitive information about a private exponent because of Observable Differences in Behavior to Error. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Fips Java Api Legion Of The Bouncy Castle
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy