CVE-2007-6721
Description
The Legion of the Bouncy Castle Java Cryptography API before release 1.38, as used in Crypto Provider Package before 1.36, has unknown impact and remote attack vectors related to "a Bleichenbacher vulnerability in simple RSA CMS signatures without signed attributes."
Risk Information
Base Score
9.1
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS Score
Exploitation Probability
0.856
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2007-6721 are fixed in BouncyCastle-bcprov-jdk14 1.38 | Windows |
| Vulnerabilities CVE-2007-6721 are fixed in BouncyCastle-bcprov-jdk15 1.38 | Windows |
| Vulnerabilities CVE-2007-6721 are fixed in BouncyCastle-bcprov-jdk16 for Linux 1.38 | Linux |
| Vulnerabilities CVE-2007-6721 are fixed in BouncyCastle-bcprov-jdk14 for Linux 1.38 | Linux |
| Vulnerabilities CVE-2007-6721 are fixed in BouncyCastle-bcprov-jdk15 for Linux 1.38 | Linux |
| CVE-2007-6721 | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234