GCVE - cpe:2.3:a:bouncycastle:bouncy-castle-crypto-package:1.34:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:bouncycastle:bouncy-castle-crypto-package:1.34:*:*:*:*:*:*:*

part: a version: 1.34 update: *

Vendor	Bouncycastle (`8993aee6-be06-52a7-a5ab-9d1fe290e16e`)
Product	Bouncy Castle Crypto Package (`caccbe8a-6514-50f4-b605-2c835beea81b`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/bcgit/bc-csharp`	purl2cpe	2026-06-01 10:12:20.978661
`pkg:github/bcgit/bc-java`	purl2cpe	2026-06-01 10:12:20.978663
`pkg:nuget/bouncycastle.netframework`	purl2cpe	2026-06-01 10:12:20.978665

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2007-6721`	vulnerable	2026-06-03 14:28:30.459313	Details available The Legion of the Bouncy Castle Java Cryptography API before release 1.38, as used in Crypto Provider Package before 1.36, has unknown impact and remote attack vectors related to "a Bleichenbacher vulnerability in simple RSA CMS signatures without signed attributes." Published: 2009-03-30T01:00:00.000Z Updated: 2024-08-07T16:18:20.431Z Open on db.gcve.eu Reference links http://freshmeat.net/projects/bouncycastlecryptoapi/releases/265580 http://www.osvdb.org/50358 http://www.bouncycastle.org/csharp/ http://www.osvdb.org/50360 http://www.bouncycastle.org/releasenotes.html	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.