Vulnerability-Lookup

WID-SEC-W-2025-1811

Vulnerability from csaf_certbund - Published: 2025-08-12 22:00 - Updated: 2026-04-27 22:00

Summary

Bouncy Castle: Schwachstelle ermöglicht Denial of Service

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Bouncy Castle ist eine Kryptographie-API für Java.

Angriff: Ein Angreifer kann eine Schwachstelle in Bouncy Castle ausnutzen, um einen Denial of Service Angriff durchzuführen.

Betroffene Betriebssysteme: - Linux - MacOS X - Sonstiges - UNIX - Windows

CVE-2025-8916

Affected products

Known affected 16 products

Product	Identifier	Version
Open Source Bouncy Castle FIPS <1.0.8 Open Source / Bouncy Castle		FIPS <1.0.8
SAS Institute Base SAS <9.4M9 (TS1M9) SAS Institute / Base SAS		<9.4M9 (TS1M9)
Open Source Bouncy Castle FIPS <2.0.8 Open Source / Bouncy Castle		FIPS <2.0.8
Open Source Bouncy Castle Java <1.79 Open Source / Bouncy Castle		Java <1.79
IBM SPSS Collaboration and Deployment Services IBM / SPSS	`cpe:/a:ibm:spss:collaboration_and_deployment_services`	Collaboration and Deployment Services
IBM App Connect Enterprise Certified Container Operator <12.0.1 IBM / App Connect Enterprise		Certified Container Operator <12.0.1
NetApp ActiveIQ Unified Manager for Linux NetApp / ActiveIQ Unified Manager	`cpe:/a:netapp:active_iq_unified_manager:for_linux`	for Linux
IBM Integration Bus for z/OS 10.1.0.0-10.1.0.6 IBM / Integration Bus	`cpe:/a:ibm:integration_bus:10.1.0.0_-_10.1.0.6::zos`	for z/OS 10.1.0.0-10.1.0.6
IBM License Metric Tool IBM / License Metric Tool	`cpe:/a:ibm:license_metric_tool:-`	—
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
IBM App Connect Enterprise 12.0.1.0-12.0.12.16 IBM / App Connect Enterprise	`cpe:/a:ibm:app_connect_enterprise:12.0.1.0_-_12.0.12.16`	12.0.1.0-12.0.12.16
IBM App Connect Enterprise 13.0.1.0-13.0.4.2 IBM / App Connect Enterprise	`cpe:/a:ibm:app_connect_enterprise:13.0.1.0_-_13.0.4.2`	13.0.1.0-13.0.4.2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
NetApp ActiveIQ Unified Manager for Microsoft Windows NetApp / ActiveIQ Unified Manager	`cpe:/a:netapp:active_iq_unified_manager:for_microsoft_windows`	for Microsoft Windows
IBM App Connect Enterprise Certified Container Operator <12.2.1 IBM / App Connect Enterprise		Certified Container Operator <12.2.1
IBM License Metric Tool <9.2.42 IBM / License Metric Tool		<9.2.42

References

12 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%9…	external
https://www.ibm.com/support/pages/node/7242533	external
https://security.netapp.com/advisory/NTAP-20250912-0011	external
https://www.ibm.com/support/pages/node/7245133	external
https://support.sas.com/en/security-bulletins/sas…	external
https://www.ibm.com/support/pages/node/7251874	external
https://www.ibm.com/support/pages/node/7253905	external
https://www.ibm.com/support/pages/node/7257653	external
https://ubuntu.com/security/notices/USN-8108-1	external
https://www.ibm.com/support/pages/node/7270885	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Bouncy Castle ist eine Kryptographie-API f\u00fcr Java.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann eine Schwachstelle in Bouncy Castle ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- MacOS X\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-1811 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1811.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-1811 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1811"
      },
      {
        "category": "external",
        "summary": "bcgit/bc-java Wiki - GitHub vom 2025-08-13",
        "url": "https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902025%E2%80%908916"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7242533 vom 2025-08-19",
        "url": "https://www.ibm.com/support/pages/node/7242533"
      },
      {
        "category": "external",
        "summary": "NetApp Security Advisory NTAP-20250912-0011 vom 2025-09-12",
        "url": "https://security.netapp.com/advisory/NTAP-20250912-0011"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7245133 vom 2025-09-16",
        "url": "https://www.ibm.com/support/pages/node/7245133"
      },
      {
        "category": "external",
        "summary": "SAS Security Update vom 2025-10-02",
        "url": "https://support.sas.com/en/security-bulletins/sas-security-update-for-sas-94m9-ts1m9.html"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7251874 vom 2025-11-19",
        "url": "https://www.ibm.com/support/pages/node/7251874"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7253905 vom 2025-12-09",
        "url": "https://www.ibm.com/support/pages/node/7253905"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7257653 vom 2026-01-29",
        "url": "https://www.ibm.com/support/pages/node/7257653"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8108-1 vom 2026-03-18",
        "url": "https://ubuntu.com/security/notices/USN-8108-1"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7270885 vom 2026-04-27",
        "url": "https://www.ibm.com/support/pages/node/7270885"
      }
    ],
    "source_lang": "en-US",
    "title": "Bouncy Castle: Schwachstelle erm\u00f6glicht Denial of Service",
    "tracking": {
      "current_release_date": "2026-04-27T22:00:00.000+00:00",
      "generator": {
        "date": "2026-04-28T08:29:42.847+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2025-1811",
      "initial_release_date": "2025-08-12T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-08-12T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-08-13T22:00:00.000+00:00",
          "number": "2",
          "summary": "Referenz(en) aufgenommen: EUVD-2025-24555"
        },
        {
          "date": "2025-08-19T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2025-09-11T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von NetApp aufgenommen"
        },
        {
          "date": "2025-09-16T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2025-10-05T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates aufgenommen"
        },
        {
          "date": "2025-11-18T23:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von IBM und IBM-APAR aufgenommen"
        },
        {
          "date": "2025-12-08T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2026-01-29T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2026-03-18T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2026-04-27T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von IBM aufgenommen"
        }
      ],
      "status": "final",
      "version": "11"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Certified Container Operator \u003c12.0.1",
                "product": {
                  "name": "IBM App Connect Enterprise Certified Container Operator \u003c12.0.1",
                  "product_id": "T036561"
                }
              },
              {
                "category": "product_version",
                "name": "Certified Container Operator 12.0.1",
                "product": {
                  "name": "IBM App Connect Enterprise Certified Container Operator 12.0.1",
                  "product_id": "T036561-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:app_connect_enterprise:certified_container_operator__12.0.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Certified Container Operator \u003c12.2.1",
                "product": {
                  "name": "IBM App Connect Enterprise Certified Container Operator \u003c12.2.1",
                  "product_id": "T046334"
                }
              },
              {
                "category": "product_version",
                "name": "Certified Container Operator 12.2.1",
                "product": {
                  "name": "IBM App Connect Enterprise Certified Container Operator 12.2.1",
                  "product_id": "T046334-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:app_connect_enterprise:certified_container_operator__12.2.1::certified_container_operator"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "13.0.1.0-13.0.4.2",
                "product": {
                  "name": "IBM App Connect Enterprise 13.0.1.0-13.0.4.2",
                  "product_id": "T048734",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:app_connect_enterprise:13.0.1.0_-_13.0.4.2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "12.0.1.0-12.0.12.16",
                "product": {
                  "name": "IBM App Connect Enterprise 12.0.1.0-12.0.12.16",
                  "product_id": "T048735",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:app_connect_enterprise:12.0.1.0_-_12.0.12.16"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "App Connect Enterprise"
          },
          {
            "category": "product_name",
            "name": "IBM DB2",
            "product": {
              "name": "IBM DB2",
              "product_id": "T045745",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:db2:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "for z/OS 10.1.0.0-10.1.0.6",
                "product": {
                  "name": "IBM Integration Bus for z/OS 10.1.0.0-10.1.0.6",
                  "product_id": "T048736",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:integration_bus:10.1.0.0_-_10.1.0.6::zos"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Integration Bus"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "IBM License Metric Tool",
                "product": {
                  "name": "IBM License Metric Tool",
                  "product_id": "T016581",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:license_metric_tool:-"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.2.42",
                "product": {
                  "name": "IBM License Metric Tool \u003c9.2.42",
                  "product_id": "T049203"
                }
              },
              {
                "category": "product_version",
                "name": "9.2.42",
                "product": {
                  "name": "IBM License Metric Tool 9.2.42",
                  "product_id": "T049203-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:license_metric_tool:9.2.42"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "License Metric Tool"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Collaboration and Deployment Services",
                "product": {
                  "name": "IBM SPSS Collaboration and Deployment Services",
                  "product_id": "T037766",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:spss:collaboration_and_deployment_services"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SPSS"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "for Linux",
                "product": {
                  "name": "NetApp ActiveIQ Unified Manager for Linux",
                  "product_id": "T023548",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:netapp:active_iq_unified_manager:for_linux"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "for Microsoft Windows",
                "product": {
                  "name": "NetApp ActiveIQ Unified Manager for Microsoft Windows",
                  "product_id": "T025631",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:netapp:active_iq_unified_manager:for_microsoft_windows"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "ActiveIQ Unified Manager"
          }
        ],
        "category": "vendor",
        "name": "NetApp"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Java \u003c1.79",
                "product": {
                  "name": "Open Source Bouncy Castle Java \u003c1.79",
                  "product_id": "T046182"
                }
              },
              {
                "category": "product_version",
                "name": "Java 1.79",
                "product": {
                  "name": "Open Source Bouncy Castle Java 1.79",
                  "product_id": "T046182-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.79::java"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "FIPS \u003c1.0.8",
                "product": {
                  "name": "Open Source Bouncy Castle FIPS \u003c1.0.8",
                  "product_id": "T046183"
                }
              },
              {
                "category": "product_version",
                "name": "FIPS 1.0.8",
                "product": {
                  "name": "Open Source Bouncy Castle FIPS 1.0.8",
                  "product_id": "T046183-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.0.8::fips"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "FIPS \u003c2.0.8",
                "product": {
                  "name": "Open Source Bouncy Castle FIPS \u003c2.0.8",
                  "product_id": "T046184"
                }
              },
              {
                "category": "product_version",
                "name": "FIPS 2.0.8",
                "product": {
                  "name": "Open Source Bouncy Castle FIPS 2.0.8",
                  "product_id": "T046184-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:2.0.8::fips"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Bouncy Castle"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c9.4M9 (TS1M9)",
                "product": {
                  "name": "SAS Institute Base SAS \u003c9.4M9 (TS1M9)",
                  "product_id": "T047382"
                }
              },
              {
                "category": "product_version",
                "name": "9.4M9 (TS1M9)",
                "product": {
                  "name": "SAS Institute Base SAS 9.4M9 (TS1M9)",
                  "product_id": "T047382-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:sas:base_sas:9.4m9_%28ts1m9%29"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Base SAS"
          }
        ],
        "category": "vendor",
        "name": "SAS Institute"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-8916",
      "product_status": {
        "known_affected": [
          "T046183",
          "T047382",
          "T046184",
          "T046182",
          "T037766",
          "T036561",
          "T023548",
          "T048736",
          "T016581",
          "T045745",
          "T048735",
          "T048734",
          "T000126",
          "T025631",
          "T046334",
          "T049203"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2025-8916"
    }
  ]
}

CVE-2025-8916 (GCVE-0-2025-8916)

Vulnerability from cvelistv5 – Published: 2025-08-13 09:31 – Updated: 2026-05-12 12:02

Title

Possible DOS in processing large name constraint structures in PKIXCertPathReveiwer

Summary

Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. BC Java bcpkix on All (API modules), Legion of the Bouncy Castle Inc. BC Java bcprov on All (API modules), Legion of the Bouncy Castle Inc. BCPKIX FIPS bcpkix-fips on All (API modules) allows Excessive Allocation. This vulnerability is associated with program files https://github.Com/bcgit/bc-java/blob/main/pkix/src/main/java/org/bouncycastle/pkix/jcajce/PKIXCertPathReviewer.Java, https://github.Com/bcgit/bc-java/blob/main/prov/src/main/java/org/bouncycastle/x509/PKIXCertPathReviewer.Java. This issue affects BC Java: from 1.44 through 1.78; BC Java: from 1.44 through 1.78; BCPKIX FIPS: from 1.0.0 through 1.0.7, from 2.0.0 through 2.0.7.

Severity

6.3 (Medium)


                        
                          CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/S:P/R:U/RE:M/U:Amber

SSVC

Exploitation: none Automatable: yes Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-770 - Allocation of Resources Without Limits or Throttling

Assigner

bcorg

References

2 references

URL	Tags
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%9…
https://cert-portal.siemens.com/productcert/html/…

Impacted products

3 products

Vendor	Product	Version
Legion of the Bouncy Castle Inc.	BC Java	Affected: 1.44 , ≤ 1.78 (maven)
Legion of the Bouncy Castle Inc.	BCPKIX FIPS	Affected: 1.0.0 , ≤ 1.0.7 (maven) Affected: 2.0.0 , ≤ 2.0.7 (maven)
Siemens	SIMATIC CN 4100	Affected: 0 , < V5.0 (custom)

Credits

Bing Shi

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-8916",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-08-13T13:13:37.616496Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-08-13T13:13:54.247Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "affected": [
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CN 4100",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-12T12:02:38.443Z",
          "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
          "shortName": "siemens-SADP"
        },
        "references": [
          {
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-032379.html"
          }
        ],
        "x_adpType": "supplier"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://repo1.maven.org/maven2/org/bouncycastle",
          "defaultStatus": "unaffected",
          "modules": [
            "API"
          ],
          "packageName": "bcpkix",
          "platforms": [
            "All"
          ],
          "product": "BC Java",
          "programFiles": [
            "https://github.com/bcgit/bc-java/blob/main/pkix/src/main/java/org/bouncycastle/pkix/jcajce/PKIXCertPathReviewer.java"
          ],
          "repo": "https://github.com/bcgit/bc-java",
          "vendor": "Legion of the Bouncy Castle Inc.",
          "versions": [
            {
              "lessThanOrEqual": "1.78",
              "status": "affected",
              "version": "1.44",
              "versionType": "maven"
            }
          ]
        },
        {
          "collectionURL": "https://repo1.maven.org/maven2/org/bouncycastle",
          "defaultStatus": "unaffected",
          "modules": [
            "API"
          ],
          "packageName": "bcprov",
          "platforms": [
            "All"
          ],
          "product": "BC Java",
          "programFiles": [
            "https://github.com/bcgit/bc-java/blob/main/prov/src/main/java/org/bouncycastle/x509/PKIXCertPathReviewer.java"
          ],
          "repo": "https://github.com/bcgit/bc-java",
          "vendor": "Legion of the Bouncy Castle Inc.",
          "versions": [
            {
              "lessThanOrEqual": "1.78",
              "status": "affected",
              "version": "1.44",
              "versionType": "maven"
            }
          ]
        },
        {
          "collectionURL": "https://repo1.maven.org/maven2/org/bouncycastle",
          "defaultStatus": "unaffected",
          "modules": [
            "API"
          ],
          "packageName": "bcpkix-fips",
          "platforms": [
            "All"
          ],
          "product": "BCPKIX FIPS",
          "vendor": "Legion of the Bouncy Castle Inc.",
          "versions": [
            {
              "lessThanOrEqual": "1.0.7",
              "status": "affected",
              "version": "1.0.0",
              "versionType": "maven"
            },
            {
              "lessThanOrEqual": "2.0.7",
              "status": "affected",
              "version": "2.0.0",
              "versionType": "maven"
            }
          ]
        }
      ],
      "configurations": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "For an attack to take place the PKIXCertPathReviewer class must be in use by the application under attack and the class must be consuming certificate paths of unknown origin without any form of other validation."
            }
          ],
          "value": "For an attack to take place the PKIXCertPathReviewer class must be in use by the application under attack and the class must be consuming certificate paths of unknown origin without any form of other validation."
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Bing Shi"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. BC Java bcpkix on All (API modules), Legion of the Bouncy Castle Inc. BC Java bcprov on All (API modules), Legion of the Bouncy Castle Inc. BCPKIX FIPS bcpkix-fips on All (API modules) allows Excessive Allocation.\u003cp\u003e This vulnerability is associated with program files \u003ctt\u003ehttps://github.Com/bcgit/bc-java/blob/main/pkix/src/main/java/org/bouncycastle/pkix/jcajce/PKIXCertPathReviewer.Java\u003c/tt\u003e, \u003ctt\u003ehttps://github.Com/bcgit/bc-java/blob/main/prov/src/main/java/org/bouncycastle/x509/PKIXCertPathReviewer.Java\u003c/tt\u003e.\u003c/p\u003e\u003cp\u003eThis issue affects BC Java: from 1.44 through 1.78; BC Java: from 1.44 through 1.78; BCPKIX FIPS: from 1.0.0 through 1.0.7, from 2.0.0 through 2.0.7.\u003c/p\u003e"
            }
          ],
          "value": "Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. BC Java bcpkix on All (API modules), Legion of the Bouncy Castle Inc. BC Java bcprov on All (API modules), Legion of the Bouncy Castle Inc. BCPKIX FIPS bcpkix-fips on All (API modules) allows Excessive Allocation. This vulnerability is associated with program files https://github.Com/bcgit/bc-java/blob/main/pkix/src/main/java/org/bouncycastle/pkix/jcajce/PKIXCertPathReviewer.Java, https://github.Com/bcgit/bc-java/blob/main/prov/src/main/java/org/bouncycastle/x509/PKIXCertPathReviewer.Java.\n\nThis issue affects BC Java: from 1.44 through 1.78; BC Java: from 1.44 through 1.78; BCPKIX FIPS: from 1.0.0 through 1.0.7, from 2.0.0 through 2.0.7."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-130",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-130 Excessive Allocation"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "USER",
            "Safety": "PRESENT",
            "attackComplexity": "LOW",
            "attackRequirements": "PRESENT",
            "attackVector": "NETWORK",
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "privilegesRequired": "NONE",
            "providerUrgency": "AMBER",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/S:P/R:U/RE:M/U:Amber",
            "version": "4.0",
            "vulnAvailabilityImpact": "LOW",
            "vulnConfidentialityImpact": "NONE",
            "vulnIntegrityImpact": "NONE",
            "vulnerabilityResponseEffort": "MODERATE"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-770",
              "description": "CWE-770 Allocation of Resources Without Limits or Throttling",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-09-12T11:17:08.609Z",
        "orgId": "91579145-5d7b-4cc5-b925-a0262ff19630",
        "shortName": "bcorg"
      },
      "references": [
        {
          "url": "https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902025%E2%80%908916"
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "Possible DOS in processing large name constraint structures in PKIXCertPathReveiwer",
      "workarounds": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Limiting the size of ASN.1 objects that can be loaded from \"the wild\" will mitigate the risk of an exploit by automatically putting a cap on the maximum size of a Name Constraints structure."
            }
          ],
          "value": "Limiting the size of ASN.1 objects that can be loaded from \"the wild\" will mitigate the risk of an exploit by automatically putting a cap on the maximum size of a Name Constraints structure."
        }
      ],
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "91579145-5d7b-4cc5-b925-a0262ff19630",
    "assignerShortName": "bcorg",
    "cveId": "CVE-2025-8916",
    "datePublished": "2025-08-13T09:31:21.181Z",
    "dateReserved": "2025-08-13T08:52:38.480Z",
    "dateUpdated": "2026-05-12T12:02:38.443Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2025-1811

CVE-2025-8916 (GCVE-0-2025-8916)

Tags

Sightings

Nomenclature