Vulnerability in Legion Of The Bouncy Castle Inc. Bc-java

CVE-2026-5588

Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcpkix on all (pkix modules), Legion of the Bouncy Castle Inc. BCPKIX-FIPS bcpkix on All (pkix modules), Legion of the Bouncy Castle…

Vulnerability class: POODLE (CVE-2014-3566)

EPSS: 0.000 (2.2th percentile) — read the EPSS interpretation.

Affected products

Legion Of The Bouncy Castle Inc. Bc-java — versions 1.67, 1.81, 1.82
Legion Of The Bouncy Castle Inc. Bcpix-lts — versions 2.73.7
Legion Of The Bouncy Castle Inc. Bcpkix-fips — versions 2.0.6, 2.1.7

Weakness classification (CWE)

CWE-327 — Use of a Broken or Risky Cryptographic Algorithm

References

91579145-5d7b-4cc5-b925-a0262ff19630 (vendor-advisory)
91579145-5d7b-4cc5-b925-a0262ff19630 (patch)