CVE-2015-7940 — Sensitive Information Exposure in Bouncy Castle Crypto Package

CWE-200 — Sensitive Information Exposure CWE-310 CWE-358 — Improperly Implemented Security Check for Standard13 documents9 sources

Severity

5.0MEDIUMNVD

EPSS

1.0%

top 23.32%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Bouncycastle Bouncy Castle Crypto Package Opensuse Leap Opensuse +4 more

Timeline

PublishedNov 9

Latest updateApr 15

Description

The Bouncy Castle Java library before 1.51 does not validate a point is withing the elliptic curve, which makes it easier for remote attackers to obtain private keys via a series of crafted elliptic curve Diffie Hellman (ECDH) key exchanges, aka an "invalid curve attack."

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages7 packages

▶NVDbouncycastle/bouncy_castle_crypto_package1.50

▶NVDopensuse/leap42.1

▶NVDopensuse/opensuse13.1, 13.2+1

▶NVDoracle/application_testing_suite12.5.0.1, 12.5.0.2, 12.5.0.3+2

▶NVDoracle/enterprise_manager_ops_center12.1.4, 12.2.2+1

🔴Vulnerability Details

OSV

Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15↗2018-10-17

▶

GHSA

Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15↗2018-10-17

▶

CVEList

CVE-2015-7940: The Bouncy Castle Java library before 1↗2015-11-09

▶

OSV

CVE-2015-7940: The Bouncy Castle Java library before 1↗2015-11-09

▶

📋Vendor Advisories

Oracle

Oracle Oracle Fusion Middleware Risk Matrix: Installation (Bouncy Castle Java Library) — CVE-2015-7940↗2020-04-15

▶

Ubuntu

Bouncy Castle vulnerabilities↗2018-08-01

▶

Red Hat

bouncycastle: Invalid curve attack allowing to extract private keys↗2015-09-14

▶

Debian

CVE-2015-7940: bouncycastle - The Bouncy Castle Java library before 1.51 does not validate a point is withing ...↗2015

▶

💬Community

Bugzilla

CVE-2015-7940 bouncycastle: Invalid curve attack allowing to extract private keys [fedora-all]↗2015-11-03

▶

Bugzilla

CVE-2015-7940 bouncycastle: Invalid curve attack allowing to extract private keys [epel-all]↗2015-11-03

▶

Bugzilla

CVE-2015-7940 bouncycastle: Invalid curve attack allowing to extract private keys↗2015-10-29

▶

Bugzilla

CVE-2014-7940 ICU: uninitialized value use in the collation component↗2015-01-23

▶