{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40328?format=json","vulnerability_id":"VCID-v4g4-vznr-zuhp","summary":"Legion of the Bouncy Castle Legion of the Bouncy Castle Java Cryptography APIs 1.58 up to but not including 1.60 contains a CWE-470: Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in XMSS/XMSS^MT private key deserialization that can result in Deserializing an XMSS/XMSS^MT private key can result in the execution of unexpected code. This attack appear to be exploitable via A handcrafted private key can include references to unexpected classes which will be picked up from the class path for the executing application. This vulnerability appears to have been fixed in 1.60 and later.","aliases":[{"alias":"CVE-2018-1000613"},{"alias":"GHSA-4446-656p-f54g"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/89420?format=json","purl":"pkg:deb/debian/bouncycastle@1.60-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.60-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/5964?format=json","purl":"pkg:deb/debian/bouncycastle@1.60-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-qe69-rd9d-4kgg"},{"vulnerability":"VCID-txmh-5548-ckdg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.60-1"},{"url":"http://public2.vulnerablecode.io/api/packages/89408?format=json","purl":"pkg:deb/debian/bouncycastle@1.68-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-c558-uvxv-8fdf"},{"vulnerability":"VCID-cqfw-r4um-hyd6"},{"vulnerability":"VCID-f47r-4t52-3bgq"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-we5n-w376-tkda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.68-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/89406?format=json","purl":"pkg:deb/debian/bouncycastle@1.72-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-c558-uvxv-8fdf"},{"vulnerability":"VCID-cqfw-r4um-hyd6"},{"vulnerability":"VCID-f47r-4t52-3bgq"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-jt6u-jzrn-pkdt"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-we5n-w376-tkda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.72-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/89409?format=json","purl":"pkg:deb/debian/bouncycastle@1.80-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-jt6u-jzrn-pkdt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.80-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/56607?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.60","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-we5n-w376-tkda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.60"},{"url":"http://public2.vulnerablecode.io/api/packages/56586?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk15on@1.60","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-txmh-5548-ckdg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk15on@1.60"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5956?format=json","purl":"pkg:deb/debian/bouncycastle@1.33-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-ah8x-azmn-zbgq"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-gf2f-22xn-z7fq"},{"vulnerability":"VCID-hkej-a1pn-2kh3"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-q8ux-tmpf-sue2"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-qe69-rd9d-4kgg"},{"vulnerability":"VCID-rh2m-yftg-7uc9"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-umbv-yqxu-cubb"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-z6hn-789k-dbgj"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.33-4"},{"url":"http://public2.vulnerablecode.io/api/packages/5957?format=json","purl":"pkg:deb/debian/bouncycastle@1.39-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-ah8x-azmn-zbgq"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-gf2f-22xn-z7fq"},{"vulnerability":"VCID-hkej-a1pn-2kh3"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-q8ux-tmpf-sue2"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-qe69-rd9d-4kgg"},{"vulnerability":"VCID-rh2m-yftg-7uc9"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-umbv-yqxu-cubb"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.39-2"},{"url":"http://public2.vulnerablecode.io/api/packages/5958?format=json","purl":"pkg:deb/debian/bouncycastle@1.44%2Bdfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-ah8x-azmn-zbgq"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-gf2f-22xn-z7fq"},{"vulnerability":"VCID-hkej-a1pn-2kh3"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-q8ux-tmpf-sue2"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-qe69-rd9d-4kgg"},{"vulnerability":"VCID-rh2m-yftg-7uc9"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-umbv-yqxu-cubb"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.44%252Bdfsg-2"},{"url":"http://public2.vulnerablecode.io/api/packages/5959?format=json","purl":"pkg:deb/debian/bouncycastle@1.44%2Bdfsg-2%2Bdeb6u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-ah8x-azmn-zbgq"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-gf2f-22xn-z7fq"},{"vulnerability":"VCID-hkej-a1pn-2kh3"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-q8ux-tmpf-sue2"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-qe69-rd9d-4kgg"},{"vulnerability":"VCID-rh2m-yftg-7uc9"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-umbv-yqxu-cubb"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.44%252Bdfsg-2%252Bdeb6u1"},{"url":"http://public2.vulnerablecode.io/api/packages/5960?format=json","purl":"pkg:deb/debian/bouncycastle@1.44%2Bdfsg-3.1%2Bdeb7u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-ah8x-azmn-zbgq"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-gf2f-22xn-z7fq"},{"vulnerability":"VCID-hkej-a1pn-2kh3"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-q8ux-tmpf-sue2"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-qe69-rd9d-4kgg"},{"vulnerability":"VCID-rh2m-yftg-7uc9"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-umbv-yqxu-cubb"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.44%252Bdfsg-3.1%252Bdeb7u1"},{"url":"http://public2.vulnerablecode.io/api/packages/5961?format=json","purl":"pkg:deb/debian/bouncycastle@1.49%2Bdfsg-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-ah8x-azmn-zbgq"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-q8ux-tmpf-sue2"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-qe69-rd9d-4kgg"},{"vulnerability":"VCID-rh2m-yftg-7uc9"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.49%252Bdfsg-3"},{"url":"http://public2.vulnerablecode.io/api/packages/5962?format=json","purl":"pkg:deb/debian/bouncycastle@1.49%2Bdfsg-3%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-ah8x-azmn-zbgq"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-q8ux-tmpf-sue2"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-qe69-rd9d-4kgg"},{"vulnerability":"VCID-rh2m-yftg-7uc9"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.49%252Bdfsg-3%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5963?format=json","purl":"pkg:deb/debian/bouncycastle@1.56-1%2Bdeb9u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-q8ux-tmpf-sue2"},{"vulnerability":"VCID-qe69-rd9d-4kgg"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-v4g4-vznr-zuhp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.56-1%252Bdeb9u2"},{"url":"http://public2.vulnerablecode.io/api/packages/56722?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.38","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.38"},{"url":"http://public2.vulnerablecode.io/api/packages/226075?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.43","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.43"},{"url":"http://public2.vulnerablecode.io/api/packages/226076?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.44","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.44"},{"url":"http://public2.vulnerablecode.io/api/packages/226077?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.45","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.45"},{"url":"http://public2.vulnerablecode.io/api/packages/226078?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.46","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.46"},{"url":"http://public2.vulnerablecode.io/api/packages/226079?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.47","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.47"},{"url":"http://public2.vulnerablecode.io/api/packages/226080?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.48","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.48"},{"url":"http://public2.vulnerablecode.io/api/packages/226081?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.49","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.49"},{"url":"http://public2.vulnerablecode.io/api/packages/226082?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.50","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.50"},{"url":"http://public2.vulnerablecode.io/api/packages/56729?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.51","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-rh2m-yftg-7uc9"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.51"},{"url":"http://public2.vulnerablecode.io/api/packages/226083?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.53","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-rh2m-yftg-7uc9"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.53"},{"url":"http://public2.vulnerablecode.io/api/packages/226084?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.54","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-rh2m-yftg-7uc9"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.54"},{"url":"http://public2.vulnerablecode.io/api/packages/226085?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.55","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-rh2m-yftg-7uc9"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.55"},{"url":"http://public2.vulnerablecode.io/api/packages/56693?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.56","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.56"},{"url":"http://public2.vulnerablecode.io/api/packages/226086?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.57","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.57"},{"url":"http://public2.vulnerablecode.io/api/packages/226087?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.58","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.58"},{"url":"http://public2.vulnerablecode.io/api/packages/226088?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk14@1.59","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7jw5-6bfa-u7a4"},{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk14@1.59"},{"url":"http://public2.vulnerablecode.io/api/packages/226238?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk15@1.32","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk15@1.32"},{"url":"http://public2.vulnerablecode.io/api/packages/56718?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk15@1.38","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk15@1.38"},{"url":"http://public2.vulnerablecode.io/api/packages/226239?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk15@1.40","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk15@1.40"},{"url":"http://public2.vulnerablecode.io/api/packages/226240?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk15@1.43","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk15@1.43"},{"url":"http://public2.vulnerablecode.io/api/packages/226241?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk15@1.44","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk15@1.44"},{"url":"http://public2.vulnerablecode.io/api/packages/226242?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk15@1.45","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk15@1.45"},{"url":"http://public2.vulnerablecode.io/api/packages/226243?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk15@1.46","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2pjq-5np3-buhj"},{"vulnerability":"VCID-5pwz-mdv3-dkak"},{"vulnerability":"VCID-72cc-rqu5-hub5"},{"vulnerability":"VCID-bf8c-jrdf-mfaw"},{"vulnerability":"VCID-cjnx-86t9-uufs"},{"vulnerability":"VCID-cnvy-kp5d-pkes"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-qap8-a94t-3yac"},{"vulnerability":"VCID-sxxg-bjnq-2kf7"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-ut6k-7z6d-zqh1"},{"vulnerability":"VCID-v4g4-vznr-zuhp"},{"vulnerability":"VCID-we5n-w376-tkda"},{"vulnerability":"VCID-zkjk-uddk-9qem"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk15@1.46"},{"url":"http://public2.vulnerablecode.io/api/packages/56736?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk15on@1.57","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-v4g4-vznr-zuhp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk15on@1.57"},{"url":"http://public2.vulnerablecode.io/api/packages/225988?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk15on@1.58","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-v4g4-vznr-zuhp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk15on@1.58"},{"url":"http://public2.vulnerablecode.io/api/packages/225989?format=json","purl":"pkg:maven/org.bouncycastle/bcprov-jdk15on@1.59","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-98ws-cchw-a3fe"},{"vulnerability":"VCID-crd1-k1qv-jkec"},{"vulnerability":"VCID-fdgv-77kb-ybat"},{"vulnerability":"VCID-k31z-bskx-uuc9"},{"vulnerability":"VCID-s4tz-g6jv-7ub4"},{"vulnerability":"VCID-txmh-5548-ckdg"},{"vulnerability":"VCID-v4g4-vznr-zuhp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.bouncycastle/bcprov-jdk15on@1.59"}],"references":[{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00011.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-29T19:03:21Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00011.html"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000613.json","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000613.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1000613","reference_id":"","reference_type":"","scores":[{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89937","published_at":"2026-06-05T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89921","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1000613"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000613","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000613"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/bcgit/bc-java","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/bcgit/bc-java"},{"reference_url":"https://github.com/bcgit/bc-java/commit/4092ede58da51af9a21e4825fbad0d9a3ef5a223","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/bcgit/bc-java/commit/4092ede58da51af9a21e4825fbad0d9a3ef5a223"},{"reference_url":"https://github.com/bcgit/bc-java/commit/4092ede58da51af9a21e4825fbad0d9a3ef5a223#diff-2c06e2edef41db889ee14899e12bd574","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-29T19:03:21Z/"}],"url":"https://github.com/bcgit/bc-java/commit/4092ede58da51af9a21e4825fbad0d9a3ef5a223#diff-2c06e2edef41db889ee14899e12bd574"},{"reference_url":"https://github.com/bcgit/bc-java/commit/cc9f91c41be67e88fca4e38f4872418448950fd9","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/bcgit/bc-java/commit/cc9f91c41be67e88fca4e38f4872418448950fd9"},{"reference_url":"https://github.com/bcgit/bc-java/commit/cd98322b171b15b3f88c5ec871175147893c31e6","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/bcgit/bc-java/commit/cd98322b171b15b3f88c5ec871175147893c31e6"},{"reference_url":"https://github.com/bcgit/bc-java/commit/cd98322b171b15b3f88c5ec871175147893c31e6#diff-148a6c098af0199192d6aede960f45dc","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-29T19:03:21Z/"}],"url":"https://github.com/bcgit/bc-java/commit/cd98322b171b15b3f88c5ec871175147893c31e6#diff-148a6c098af0199192d6aede960f45dc"},{"reference_url":"https://lists.apache.org/thread.html/rf1bbc0ea4a9f014cf94df9a12a6477d24a27f52741dbc87f2fd52ff2@%3Cissues.geode.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/rf1bbc0ea4a9f014cf94df9a12a6477d24a27f52741dbc87f2fd52ff2@%3Cissues.geode.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rf1bbc0ea4a9f014cf94df9a12a6477d24a27f52741dbc87f2fd52ff2%40%3Cissues.geode.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-29T19:03:21Z/"}],"url":"https://lists.apache.org/thread.html/rf1bbc0ea4a9f014cf94df9a12a6477d24a27f52741dbc87f2fd52ff2%40%3Cissues.geode.apache.org%3E"},{"reference_url":"https://security.netapp.com/advisory/ntap-20190204-0003","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://security.netapp.com/advisory/ntap-20190204-0003"},{"reference_url":"https://www.oracle.com/security-alerts/cpuapr2020.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-29T19:03:21Z/"}],"url":"https://www.oracle.com/security-alerts/cpuapr2020.html"},{"reference_url":"https://www.oracle.com/security-alerts/cpuApr2021.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-29T19:03:21Z/"}],"url":"https://www.oracle.com/security-alerts/cpuApr2021.html"},{"reference_url":"https://www.oracle.com/security-alerts/cpuoct2020.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-29T19:03:21Z/"}],"url":"https://www.oracle.com/security-alerts/cpuoct2020.html"},{"reference_url":"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-29T19:03:21Z/"}],"url":"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html"},{"reference_url":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-29T19:03:21Z/"}],"url":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"},{"reference_url":"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-29T19:03:21Z/"}],"url":"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1601096","reference_id":"1601096","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1601096"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2018-1000613","reference_id":"CVE-2018-1000613","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2018-1000613"},{"reference_url":"https://github.com/advisories/GHSA-4446-656p-f54g","reference_id":"GHSA-4446-656p-f54g","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-4446-656p-f54g"},{"reference_url":"https://security.netapp.com/advisory/ntap-20190204-0003/","reference_id":"ntap-20190204-0003","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-29T19:03:21Z/"}],"url":"https://security.netapp.com/advisory/ntap-20190204-0003/"}],"weaknesses":[{"cwe_id":1035,"name":"OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017."},{"cwe_id":470,"name":"Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')","description":"The product uses external input with reflection to select which classes or code to use, but it does not sufficiently prevent the input from selecting improper classes or code."},{"cwe_id":502,"name":"Deserialization of Untrusted Data","description":"The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid."},{"cwe_id":78,"name":"Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')","description":"The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component."},{"cwe_id":937,"name":"OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013."}],"exploits":[],"severity_range_score":"4.9 - 10.0","exploitability":"0.5","weighted_severity":"9.0","risk_score":4.5,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v4g4-vznr-zuhp"}