CVE-2018-1000613 – org.bouncycastle:bcprov-jdk15on

Package

Manager: maven
Name: org.bouncycastle:bcprov-jdk15on
Vulnerable Version: >=1.57 <1.60

Severity

Level: Critical

CVSS v3.1: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

EPSS: 0.06209 pctl0.90499

Details

Deserialization of Untrusted Data in Bouncy castle Legion of the Bouncy Castle Java Cryptography APIs starting in version 1.57 and prior to version 1.60 contains a CWE-470: Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in XMSS/XMSS^MT private key deserialization that can result in Deserializing an XMSS/XMSS^MT private key can result in the execution of unexpected code. This attack appear to be exploitable via A handcrafted private key can include references to unexpected classes which will be picked up from the class path for the executing application. This vulnerability appears to have been fixed in 1.60 and later.

Metadata

Created: 2018-10-17T16:23:12Z
Modified: 2025-05-12T21:40:33Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/10/GHSA-4446-656p-f54g/GHSA-4446-656p-f54g.json
CWE IDs: ["CWE-470", "CWE-502"]
Alternative ID: GHSA-4446-656p-f54g
Finding: F096
Auto approve: 1