CVE-2025-8885

Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java bcprov, bc-fips on All (API modules) allows Excessive Allocation. This vulnerability is associated with program files https://github.Com/bcgit/bc-java/blob/main/core/src/main/java/org/bouncycastle/asn1/ASN1ObjectIdentifier.Java. This issue affects Bouncy Castle for Java: from BC 1.0 through 1.77, from BC-FJA 1.0.0 through 1.0.2.5, from BC-FJA 2.0.0 through 2.0.0.
CVSS

No CVSS.

Configurations

No configuration.

History

16 Aug 2025, 10:15

Type Values Removed Values Added
Summary (en) Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java on All (API modules) allows Excessive Allocation. This vulnerability is associated with program files https://github.Com/bcgit/bc-java/blob/main/core/src/main/java/org/bouncycastle/asn1/ASN1ObjectIdentifier.Java. This issue affects Bouncy Castle for Java: from BC 1.0 through 1.77, from BC-FJA 1.0.0 through 2.0.0. (en) Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java bcprov, bc-fips on All (API modules) allows Excessive Allocation. This vulnerability is associated with program files https://github.Com/bcgit/bc-java/blob/main/core/src/main/java/org/bouncycastle/asn1/ASN1ObjectIdentifier.Java. This issue affects Bouncy Castle for Java: from BC 1.0 through 1.77, from BC-FJA 1.0.0 through 1.0.2.5, from BC-FJA 2.0.0 through 2.0.0.

12 Aug 2025, 14:25

Type Values Removed Values Added
Summary
  • (es) Vulnerabilidad de asignación de recursos sin límites o limitación en Legion of the Bouncy Castle Inc. Bouncy Castle para Java en todos los módulos API permite una asignación excesiva. Esta vulnerabilidad está asociada a los archivos de programa https://github.Com/bcgit/bc-java/blob/main/core/src/main/java/org/bouncycastle/asn1/ASN1ObjectIdentifier.Java. Este problema afecta a Bouncy Castle para Java: de BC 1.0 a 1.77, y de BC-FJA 1.0.0 a 2.0.0.

12 Aug 2025, 10:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-08-12 10:15

Updated : 2025-08-16 10:15


NVD link : CVE-2025-8885

Mitre link : CVE-2025-8885

CVE.ORG link : CVE-2025-8885


JSON object : View

Products Affected

No product.

CWE
CWE-770

Allocation of Resources Without Limits or Throttling