Vulnerabilities > Bouncycastle > Legion OF THE Bouncy Castle Java Crytography API > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2018-04-16	CVE-2018-5382	Improper Validation of Integrity Check Value vulnerability in multiple products The default BKS keystore use an HMAC that is only 16 bits long, which can allow an attacker to compromise the integrity of a BKS keystore. local low complexity bouncycastle redhat CWE-354	3.6

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.