bouncycastle legion-bouncy-castle-java-crytography-api CVE-2019-17359 vulnerability in Bouncycastle and Other Products
Published on October 8, 2019

product logo product logo product logo product logo
The ASN.1 parser in Bouncy Castle Crypto (aka BC Java) 1.63 can trigger a large attempted memory allocation, and resultant OutOfMemoryError error, via crafted ASN.1 data. This is fixed in 1.64.

NVD


Products Associated with CVE-2019-17359

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-17359 are published in these products:

Bouncycastle Legion Bouncy Castle Java Crytography Api
 
Apache Tomee
 
NetApp Oncommand Workflow Automation
 
NetApp Service Level Manager
 
NetApp Oncommand Api Services
 
NetApp Active Iq Unified Manager
 
Oracle Flexcube Private Banking
 
Oracle Peoplesoft Enterprise Peopletools
 
Oracle Hospitality Guest Access
 
Oracle Weblogic Server
 
Oracle Webcenter Portal
 
Oracle Business Process Management Suite
 
Oracle Soa Suite
 
Oracle Data Integrator
 
Oracle Communications Session Route Manager
 
Oracle Communications Diameter Signaling Router
 
Oracle Peoplesoft Enterprise Hcm Global Payroll Switzerland
 
Oracle Communications Convergence
 
Oracle Retail Xstore Point Of Service
 
Oracle Managed File Transfer
 
Oracle Financial Services Analytical Applications Infrastructure
 
Bouncycastle Bc Java
 

Exploit Probability

EPSS
7.63%
Percentile
91.70%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.