A CVE (CVE-2020-28052) has been reported for BouncyCastle, the cryptography library used by EJBCA. This does not present a vulnerability in EJBCA, as it affects versions 1.65 and 1.66 of the library, while EJBCA runs version 1.67. In addition to that, the affected code is not referenced by EJBCA.
PrimeKey is pleased to announce the very first release of EJBCA SaaS version 1.0. EJBCA SaaS provides you with the full power of EJBCA Enterprise, but without the need for managing the underlying infrastructure. Set up your EJBCA instance on AWS, and PrimeKey makes sure that your PKI infrastructure is managed...