CVE-2025-14813

CVSS v4.0

9.3

Critical

Vector

AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/RE:M/U:Red

Name of the Vulnerable Software and Affected Versions BC-JAVA versions 1.59 through 1.83

Description The GOSTCTR implementation in the G3413CTRBlockCipher program files is unable to process more than 255 blocks correctly, resulting in the use of a broken or risky cryptographic algorithm.

Recommendations Update to version 1.84.

Exploit

Fix

Use of a Broken Cryptographic Algorithm

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-327

Related Identifiers

CVE-2025-14813

OPENSUSE-SU-2026:10571-1

RHSA-2026:18054

RHSA-2026:18055

Affected Products

Bc-Java

CVE-2025-14813

Weakness Enumeration

Related Identifiers

Affected Products

References · 14