ByteOS Network

NVD Vulnerability Details :

CVE-2025-14813

Awaiting Analysis

Source-91579145-5d7b-4cc5-b925-a0262ff19630

Published At-15 Apr, 2026 | 10:16

Updated At-17 Apr, 2026 | 15:38

Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcprov on all (core modules). This vulnerability is associated with program files G3413CTRBlockCipher. GOSTCTR implementation unable to process more than 255 blocks correctly. This issue affects BC-JAVA: from 1.59 before 1.84.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	4.0	9.3	CRITICAL	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:M/U:Red

Type: Secondary

Version: 4.0

Base score: 9.3

Base severity: CRITICAL

Vector:

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:M/U:Red

Weaknesses

CWE ID	Type	Source
CWE-327	Secondary	91579145-5d7b-4cc5-b925-a0262ff19630

CWE ID: CWE-327

Type: Secondary

Source: 91579145-5d7b-4cc5-b925-a0262ff19630

References

Hyperlink	Source	Resource
https://github.com/bcgit/bc-java/commit/701686cb0184cd9ae103c801b3581fdf95c6d4f3	91579145-5d7b-4cc5-b925-a0262ff19630	N/A
https://github.com/bcgit/bc-java/commit/b42574345414e4b7c8051b16fa1fafe01c29871f	91579145-5d7b-4cc5-b925-a0262ff19630	N/A
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902025%E2%80%9014813	91579145-5d7b-4cc5-b925-a0262ff19630	N/A