VDB
CVE-2025-8885
CVE-2025-8885
PUBLISHED
CVSS 8.699999809265137 HIGH
Bouncy Castle ist eine Kryptographie-API für Java.
EPSS 0.12% · 30.7th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.12%
30.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| IBM | IBM App Connect Enterprise Certified Container Operator <12.0.1 | |
| SAS Institute | SAS Institute Base SAS <9.4M9 (TS1M9) | |
| IBM | IBM Integration Bus for z/OS 10.1.0.0-10.1.0.6 | |
| IBM | IBM SPSS Collaboration and Deployment Services | |
| IBM | IBM App Connect Enterprise Certified Container Operator <12.2.1 | |
| NetApp | NetApp ActiveIQ Unified Manager for Microsoft Windows | |
| IBM | IBM App Connect Enterprise 12.0.1.0-12.0.12.16 | |
| IBM | IBM App Connect Enterprise 13.0.1.0-13.0.4.2 | |
| Open Source | Open Source Bouncy Castle <1.78 | |
| NetApp | NetApp ActiveIQ Unified Manager for L |
Timeline
- CVE Published
- Aug 12, 2025 EPSS Score
- Aug 20, 2025 EPSS Score
- Aug 29, 2025 EPSS Score
- Sep 6, 2025 EPSS Score
- Sep 14, 2025 EPSS Score
- Sep 23, 2025 EPSS Score
- Oct 1, 2025 EPSS Score
- Oct 9, 2025 EPSS Score
- Oct 17, 2025 EPSS Score
- Oct 26, 2025 EPSS Score
- Nov 3, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1764.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1764 advisory
- https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902025%E2%80%908885 advisory
- https://www.ibm.com/support/pages/node/7242533 advisory
- https://security.netapp.com/advisory/NTAP-20250912-0012 advisory
- https://www.ibm.com/support/pages/node/7245133 advisory
- https://support.sas.com/en/security-bulletins/sas-security-update-for-sas-94m9-ts1m9.html advisory
- https://www.ibm.com/support/pages/node/7251874 advisory