What is the bcorg CNA?
bcorg is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 6 CVE records since 2025.
How many CVEs has bcorg published?
bcorg has published 6 CVE records, including 6 in the last two years.
What is bcorg's CVE data quality grade?
RadicalNotion.AI grades bcorg's CVE data quality as A, with an overall completeness score of 100%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (100%), and CWE (100%) information.
What products does bcorg publish CVEs for?
bcorg most frequently publishes CVEs for org.bouncycastle:bc-fips, BC-JAVA, org.bouncycastle:bcprov-jdk15to18, Bouncy Castle for Java, org.bouncycastle:bcprov-jdk14.
Which vendors does bcorg cover?
bcorg publishes CVEs across 1 distinct vendors, most often Legion of the Bouncy Castle Inc., org.bouncycastle, Siemens.
Is bcorg actively publishing CVEs?
bcorg is currently active, based on 6 CVEs in the last two years.
What is the average severity of bcorg's CVEs?
The average CVSS base score across bcorg's scored CVEs is 4.2.
How many critical CVEs has bcorg published?
bcorg has published 1 critical-severity CVEs and 2 high-severity CVEs.
Are any of bcorg's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of bcorg's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in bcorg's CVEs?
bcorg's CVEs most often map to these CWE weakness types: CWE-400 (Uncontrolled Resource Consumption), CWE-770 (Allocation of Resources Without Limits or Throttling), CWE-327 (Use of a Broken or Risky Cryptographic Algorithm), CWE-385 (Covert Timing Channel).
How does bcorg rank among CNAs?
By total CVE volume, bcorg ranks #343 of 370 CNAs, and it reports more complete CVE records than 60% of all CNAs.
