CWE-361
2 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-361page 1 of 1
- CVE-2016-1000341MEDIUMCVSS 5.9EG 5.92018-06-04
In the Bouncy Castle JCE Provider version 1.55 and earlier DSA signature generation is vulnerable to timing attack. Where timings can be closely observed for the generation of signatures, the lack of blinding in 1.55, or earlier, may allow…
- CVE-2016-1000345MEDIUMCVSS 5.9EG 5.92018-06-04
In the Bouncy Castle JCE Provider version 1.55 and earlier the DHIES/ECIES CBC mode vulnerable to padding oracle attack. For BC 1.55 and older, in an environment where timings can be easily observed, it is possible with enough observations…
Map vulnerabilities like CWE-361 to your infrastructure
EchelonGraph correlates every CVE — across CWE-361 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →