MiracleLinux 8 : pki-core:10.6 (AXSA:2021-1628:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1628:01 advisory. pki-core: Unprivileged users can renew any certificate CVE-2021-20179 Tenable has extracted the preceding description block directly from the MiracleLinux...

CVE-2023-20179

A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to inject HTML content. This vulnerability is due to improper validation of user-supplied data in element fields. An attacker could...

CVE-2022-20179

Product: AndroidVersions: Android kernelAndroid ID: A-211683760References: N/A...

CVE-2017-20179

A vulnerability was found in InSTEDD Pollit 2.3.1. It has been rated as critical. This issue affects the function TourController of the file app/controllers/tourcontroller.rb. The manipulation leads to an unknown weakness. The attack may be initiated remotely. Upgrading to version 2.3.2 is able t...

CVE-2025-20179

A vulnerability in the web-based management interface of Cisco Expressway Series could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly...

CVE-2025-20179

creationtimestamp| type| source ---|---|--- 2025-02-05 16:21:38+00:00| seen| https://infosec.exchange/users/cve/statuses/113952194451285433 2025-02-05 16:37:05+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113952255128702135 2025-02-05 17:16:16+00:00| seen|...

CVE-2025-20179 Cisco Expressway Series Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Expressway Series could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly...

Rocky Linux 8 : pki-core:10.6 (RLSA-2021:0966)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:0966 advisory. - A flaw was found in pki-core. An attacker who has successfully compromised a key could use this flaw to renew the corresponding certificate over and over again...

CVE-2023-20179

creationtimestamp| type| source ---|---|--- 2023-09-27 22:36:04+00:00| seen| https://t.me/cibsecurity/71140...

CVE-2023-20179

Cisco Catalyst SD-WAN Manager (web UI) HTML injection (CVE-2023-20179) is caused by improper validation of user-supplied data in element fields, allowing an authenticated, remote attacker to inject HTML content and modify pages in the web-based management interface. Impact is limited to browser-b...

CVE-2017-20179

CVE-2017-20179 affects InSTEDD Pollit 2.3.1, specifically the TourController in app/controllers/tour_controller.rb. The issue is described as a critical vulnerability with remote attack potential and an unknown weakness resulting from manipulation. A fix exists in Pollit 2.3.2, with the patch ide...

CVE-2022-20179

Product: AndroidVersions: Android kernelAndroid ID: A-211683760References: N/A...

CVE-2022-20179

Product: AndroidVersions: Android kernelAndroid ID: A-211683760References: N/A...

CVE-2022-20179

Technical details about CVE-2022-20179 are not provided in the supplied documents; no affected component/version or impact is disclosed. Monitor for updates from official advisories.

pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update

apache-commons-collections jss 4.8.1-2 - Bug 1932803 - HSM + FIPS: CMCRequest with a shared secret resulting in error 4.8.1-1 - Rebase to upstream JSS v4.8.1 - Red Hat Bugilla 1908541 - jss broke SCEP - missing PasswordChallenge class - Red Hat Bugilla 1489256 - RFE jss should support RSA with OA...

Huawei EulerOS: Security Advisory for pki-core (EulerOS-SA-2021-1885)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP5 : pki-core (EulerOS-SA-2021-1910)

According to the versions of the pki-core packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in pki-core. A specially crafted POST request can be used to reflect a DOM-based cross-site scripting XSS attack to inject co...

Huawei EulerOS: Security Advisory for pki-core (EulerOS-SA-2021-1831)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

pki-core:10.6 security update

pki-core 10.9.4-3.0.1 - Remove redhat reference. 10.9.4-3 - Bug 1933146 - PKI instance creation failed with new 389-ds-base build 10.9.4-2 - CVE-2021-20179: Fix unprivileged users can renew any certificate...

Oracle Linux 8 : pki-core:10.6 (ELSA-2021-0966)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-0966 advisory. pki-core 10.9.4-3.0.1 - Remove redhat reference. 10.9.4-3 - Bug 1933146 - PKI instance creation failed with new 389-ds-base build 10.9.4-2 - CVE-2021-20179: Fix...