Vulnerabilities > Bouncycastle > Fips Java API > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-11-23 CVE-2023-33202 Resource Exhaustion vulnerability in Bouncycastle Bouncy Castle for Java and Fips Java API
Bouncy Castle for Java before 1.73 contains a potential Denial of Service (DoS) issue within the Bouncy Castle org.bouncycastle.openssl.PEMParser class.
local
low complexity
bouncycastle CWE-400
5.5
5.5
2022-11-21 CVE-2022-45146 Use After Free vulnerability in Bouncycastle Fips Java API 1.0.1/1.0.2/1.0.2.3
An issue was discovered in the FIPS Java API of Bouncy Castle BC-FJA before 1.0.2.4.
local
low complexity
bouncycastle CWE-416
5.5
5.5