CVE-2026-5588
Vulnerability Description
: Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcpkix on all (pkix modules).
PKIX draft CompositeVerifier accepts empty signature sequence as valid.
This issue affects BC-JAVA: from 1.49 before 1.84.
PKIX draft CompositeVerifier accepts empty signature sequence as valid.
This issue affects BC-JAVA: from 1.49 before 1.84.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-327
Source
NVD
Discussion (0)
Add Comment
No comments yet. Be the first!