VYPR
High severity7.5NVD Advisory· Published Jun 5, 2018· Updated Jun 17, 2026

CVE-2018-1000180

CVE-2018-1000180

Description

Bouncy Castle BC 1.54 - 1.59, BC-FJA 1.0.0, BC-FJA 1.0.1 and earlier have a flaw in the Low-level interface to RSA key pair generator, specifically RSA Key Pairs generated in low-level API with added certainty may have less M-R tests than expected. This appears to be fixed in versions BC 1.60 beta 4 and later, BC-FJA 1.0.2 and later.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.bouncycastle:bcprov-jdk14Maven
< 1.601.60
org.bouncycastle:bcprov-jdk15Maven
< 1.601.60
org.bouncycastle:bcprov-jdk15onMaven
< 1.601.60

Affected products

4

Patches

Vulnerability mechanics

References

24

News mentions

0

No linked articles in our index yet.

CVE-2018-1000180 · High · VYPR