CVE-2026-5598 | Legion of the Bouncy Castle BC-JAVA up to 1.83 Private Key covert timing channel

Inserito da Angelo Barbosa | Apr 15, 2026 | CVE

A vulnerability was found in Legion of the Bouncy Castle BC-JAVA up to 1.83. It has been rated as problematic. The affected element is an unknown function of the component Private Key Handler. Performing a manipulation results in covert timing channel.

This vulnerability was named CVE-2026-5598. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is advised.

CVE-2026-5598 | Legion of the Bouncy Castle BC-JAVA up to 1.83 Private Key covert timing channel

Post correlati

CVE-2023-6267 | Red Hat Quarkus JSON Payload deserialization

CVE-2024-8422 | Schneider Electric Zelio Soft 2 prior 5.4.2.2 Project File use after free (SEVD-2024-282-06)

CVE-2024-47291 | Huawei HarmonyOS/EMUI ActivityManagerService Module permission

CVE-2025-43832 | andreyk Remote Images Grabber Plugin up to 0.6 on WordPress cross site scripting