CVE-2013-1624 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	4 UNKNOWN	NETWORK	HIGH		AV:N/AC:H/Au:N/C:P/I:P/A:N
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 66%

Vendor	Product	Version
bouncycastle	bc-java	1.01
bouncycastle	bc-java	1.02
bouncycastle	bc-java	1.03
bouncycastle	bc-java	1.04
bouncycastle	bc-java	1.05
bouncycastle	bc-java	1.06
bouncycastle	bc-java	1.07
bouncycastle	bc-java	1.08
bouncycastle	bc-java	1.09
bouncycastle	bc-java	1.10
bouncycastle	bc-java	1.11
bouncycastle	bc-java	1.12
bouncycastle	bc-java	1.13
bouncycastle	bc-java	1.14
bouncycastle	bc-java	1.15
bouncycastle	bc-java	1.16
bouncycastle	bc-java	1.17
bouncycastle	bc-java	1.18
bouncycastle	bc-java	1.19
bouncycastle	bc-java	1.20
bouncycastle	bc-java	1.21
bouncycastle	bc-java	1.22
bouncycastle	bc-java	1.23
bouncycastle	bc-java	1.24
bouncycastle	bc-java	1.25
bouncycastle	bc-java	1.26
bouncycastle	bc-java	1.27
bouncycastle	bc-java	1.28
bouncycastle	bc-java	1.29
bouncycastle	bc-java	1.30
bouncycastle	bc-java	1.31
bouncycastle	bc-java	1.32
bouncycastle	bc-java	1.33
bouncycastle	bc-java	1.34
bouncycastle	bc-java	1.35
bouncycastle	bc-java	1.36
bouncycastle	bc-java	1.37
bouncycastle	bc-java	1.38
bouncycastle	bc-java	1.39
bouncycastle	bc-java	1.40
bouncycastle	bc-java	1.41
bouncycastle	bc-java	1.42
bouncycastle	bc-java	1.43
bouncycastle	bc-java	1.44
bouncycastle	bc-java	1.45
bouncycastle	bc-java	1.46
bouncycastle	bc-java	1.47
bouncycastle	legion-of-the-bouncy-castle-c\#-cryptography-api	0.0
bouncycastle	legion-of-the-bouncy-castle-c\#-cryptography-api	1.0
bouncycastle	legion-of-the-bouncy-castle-c\#-cryptography-api	1.1
bouncycastle	legion-of-the-bouncy-castle-c\#-cryptography-api	1.2
bouncycastle	legion-of-the-bouncy-castle-c\#-cryptography-api	1.3
bouncycastle	legion-of-the-bouncy-castle-c\#-cryptography-api	1.4
bouncycastle	legion-of-the-bouncy-castle-c\#-cryptography-api	1.5
bouncycastle	legion-of-the-bouncy-castle-c\#-cryptography-api	1.6.1
bouncycastle	legion-of-the-bouncy-castle-c\#-cryptography-api	1.7

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

bouncycastle

bullseye	1.68-2 fixed
squeeze	no-dsa
wheezy	no-dsa
bookworm	1.72-2 fixed
sid	1.77-1 fixed
trixie	1.77-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

bouncycastle

zesty	not-affected
yakkety	not-affected
xenial	not-affected
wily	not-affected
vivid	not-affected
utopic	not-affected
trusty	dne
saucy	not-affected
raring	ignored
quantal	ignored
precise	ignored
oneiric	ignored
lucid	ignored
hardy	ignored

Common Weakness Enumeration

CWE-310 -

References

http://openwall.com/lists/oss-security/2013/02/05/24

http://rhn.redhat.com/errata/RHSA-2014-0371.html

http://rhn.redhat.com/errata/RHSA-2014-0372.html

http://secunia.com/advisories/57716

http://secunia.com/advisories/57719

http://www.isg.rhul.ac.uk/tls/TLStiming.pdf

http://openwall.com/lists/oss-security/2013/02/05/24

http://rhn.redhat.com/errata/RHSA-2014-0371.html

http://rhn.redhat.com/errata/RHSA-2014-0372.html

http://secunia.com/advisories/57716

http://secunia.com/advisories/57719

http://www.isg.rhul.ac.uk/tls/TLStiming.pdf