[Bug 1100694] VUL-0: CVE-2018-1000613: bouncycastle: prior to version 1.60 contains a CWE-470: Use of Externally-ControlledInput to Select Classes or Code ('Unsafe Reflection')
https://bugzilla.suse.com/show_bug.cgi?id=1100694 SMASH SMASH <smash_bz@suse.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Whiteboard|CVSSv3:RedHat:CVE-2018-1000 |CVSSv3.1:SUSE:CVE-2018-1000 |613:4.9:(AV:L/AC:H/PR:N/UI: |613:4.9:(AV:L/AC:H/PR:N/UI: |N/S:U/C:L/I:L/A:L) |N/S:U/C:L/I:L/A:L) |CVSSv2:NVD:CVE-2018-1000613 | |:7.5:(AV:N/AC:L/Au:N/C:P/I: | |P/A:P) | |CVSSv3:NVD:CVE-2018-1000613 | |:9.8:(AV:N/AC:L/PR:N/UI:N/S | |:U/C:H/I:H/A:H) | -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com