According to reviewers and security bulletins from sources like Snyk and GitHub , version 1.70 is vulnerable to:

sha256sum bcprov-jdk15on-1.70.jar