Package impact
NuGet / BouncyCastle.Cryptography
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-29857 | unknown | — | — | 2y ago | Bouncy Castle certificate parsing issues cause high CPU usage during parameter evaluation. | |||
| CVE-2024-30171 | unknown | — | — | 2y ago | Bouncy Castle affected by timing side-channel for RSA key exchange ("The Marvin Attack") | |||
| CVE-2024-30172 | unknown | — | — | 2y ago | Bouncy Castle crafted signature and public key can be used to trigger an infinite loop |