Vulnerabilities > Bouncycastle > Fips Java API > 1.0.1

DATE CVE VULNERABILITY TITLE RISK
2022-11-21 CVE-2022-45146 Use After Free vulnerability in Bouncycastle Fips Java API 1.0.1/1.0.2/1.0.2.3
An issue was discovered in the FIPS Java API of Bouncy Castle BC-FJA before 1.0.2.4.
local
low complexity
bouncycastle CWE-416
5.5
5.5
2018-06-05 CVE-2018-1000180 Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products
Bouncy Castle BC 1.54 - 1.59, BC-FJA 1.0.0, BC-FJA 1.0.1 and earlier have a flaw in the Low-level interface to RSA key pair generator, specifically RSA Key Pairs generated in low-level API with added certainty may have less M-R tests than expected.
network
low complexity
bouncycastle debian oracle netapp redhat CWE-327
7.5
7.5