Search for packages
| purl | pkg:nuget/BouncyCastle@1.8.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2u8v-56gn-8uc2
Aliases: CVE-2020-15522 GHSA-6xx3-rg99-gc3p |
Timing based private key exposure in Bouncy Castle Bouncy Castle BC Java before 1.66, BC C# .NET before 1.8.7, BC-FJA before 1.0.2.1, BC before 1.66, BC-FNA before 1.0.1.1 have a timing issue within the EC math library that can expose information about the private key when an attacker is able to observe timing information for the generation of multiple deterministic ECDSA signatures. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T21:28:21.661333+00:00 | GitLab Importer | Affected by | VCID-2u8v-56gn-8uc2 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/BouncyCastle/CVE-2020-15522.yml | 38.4.0 |
| 2026-04-11T22:41:19.528626+00:00 | GitLab Importer | Affected by | VCID-2u8v-56gn-8uc2 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/BouncyCastle/CVE-2020-15522.yml | 38.3.0 |
| 2026-04-02T22:51:46.122291+00:00 | GitLab Importer | Affected by | VCID-2u8v-56gn-8uc2 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/BouncyCastle/CVE-2020-15522.yml | 38.1.0 |
| 2026-04-01T17:09:52.595986+00:00 | GitLab Importer | Affected by | VCID-2u8v-56gn-8uc2 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/BouncyCastle/CVE-2020-15522.yml | 38.0.0 |