CVE-2025-9092
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-08-16
Last updated on: 2025-08-18
Assigner: bcorg
Description
Description
Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java - BC-FJA 2.1.0 bc-fips (API modules) allows Excessive Allocation. This vulnerability is associated with program files org.Bouncycastle.Crypto.Fips.NativeLoader.
This issue affects Bouncy Castle for Java - BC-FJA 2.1.0: from BC-FJA 2.1.0 through 2.1.0.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| legion_of_the_bouncy_castle_inc | bouncy_castle_for_java | 2.1.0 |
| legion_of_the_bouncy_castle_inc | bouncy_castle_for_java | 2.1.1 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-400 | The product does not properly control the allocation and maintenance of a limited resource. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an Uncontrolled Resource Consumption issue in the Legion of the Bouncy Castle Inc. Bouncy Castle for Java - BC-FJA 2.1.0 bc-fips API modules. It allows excessive allocation of resources due to a flaw in the program files org.Bouncycastle.Crypto.Fips.NativeLoader.
How can this vulnerability impact me? :
The vulnerability can lead to excessive resource consumption, which may degrade system performance or availability. This could potentially cause denial of service or impact the stability of applications using the affected Bouncy Castle Java library.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70