CVE-2026-5598 | Legion of the Bouncy Castle BC-JAVA up to 1.83 Private Key covert timing channel

April 15, 2026 Yanac

A vulnerability was found in Legion of the Bouncy Castle BC-JAVA up to 1.83. It has been rated as problematic. The affected element is an unknown function of the component Private Key Handler. Performing a manipulation results in covert timing channel.

This vulnerability was named CVE-2026-5598. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is advised.VulDB Recent EntriesRead More