Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2018-1080

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Dogtag PKI, through version 10.6.1, has a vulnerability in AAclAuthz.java that, under certain configurations, causes the application of ACL allow and deny rules...

8.1CVSS7.4AI score0.01516EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/10/31 2:40 a.m.3 views

SUSE CVE-2018-1080

Dogtag PKI, through version 10.6.1, has a vulnerability in AAclAuthz.java that, under certain configurations, causes the application of ACL allow and deny rules to be reversed. If a server is configured to process allow rules before deny rules authz.evaluateOrder=allow,deny, then allow rules will...

8.1CVSS7.2AI score0.01516EPSS
Exploits0References2
ALT Linux
ALT Linux
added 2019/04/01 12:0 a.m.24 views

Security fix for the ALT Linux 8 package pki-core version 10.2.6-alt4_19jpp8.M80P.2

10.2.6-alt419jpp8.M80P.2 built April 1, 2019 Stanislav Levin in task 225227 March 18, 2019 Stanislav Levin - Fixed ACL evaluation in allow,deny mode fixes: CVE-2018-1080. - Fixed Javadoc build. - Fixed intersections with filesystem...

6.8CVSS8AI score0.01516EPSS
Exploits0
OSV
OSV
added 2018/07/03 1:29 a.m.2 views

UBUNTU-CVE-2018-1080

Dogtag PKI, through version 10.6.1, has a vulnerability in AAclAuthz.java that, under certain configurations, causes the application of ACL allow and deny rules to be reversed. If a server is configured to process allow rules before deny rules authz.evaluateOrder=allow,deny, then allow rules will...

8.1CVSS7.1AI score0.01516EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2018/07/03 1:29 a.m.22 views

CVE-2018-1080

Dogtag PKI, through version 10.6.1, has a vulnerability in AAclAuthz.java that, under certain configurations, causes the application of ACL allow and deny rules to be reversed. If a server is configured to process allow rules before deny rules authz.evaluateOrder=allow,deny, then allow rules will...

8.1CVSS7AI score0.01516EPSS
Exploits0References3
OSV
OSV
added 2018/07/03 1:29 a.m.18 views

CVE-2018-1080

Dogtag PKI, through version 10.6.1, has a vulnerability in AAclAuthz.java that, under certain configurations, causes the application of ACL allow and deny rules to be reversed. If a server is configured to process allow rules before deny rules authz.evaluateOrder=allow,deny, then allow rules will...

8.1CVSS7.4AI score0.01516EPSS
Exploits0References4
CVE
CVE
added 2018/07/02 6:0 p.m.82 views

CVE-2018-1080

CVE-2018-1080 affects Dogtag PKI (pki-core) up to version 10.6.1. The issue is in AAclAuthz.java: when authz.evaluateOrder is set to allow,deny, ACL allow and deny rules can be applied in the reverse order, potentially denying legitimate access or granting unintended access, risking privilege esc...

8.1CVSS8AI score0.01516EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/06/28 12:0 a.m.29 views

Oracle Linux 7 : pki-core (ELSA-2018-1979)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-1979 advisory. - Bugzilla Bug 1589307 - CVE-2018-1080 pki-core: Mishandled ACL configuration in AAclAuthz.java reverses rules that allow and deny access rhel-7.5.z ftweedal, c...

8.1CVSS7.5AI score0.01516EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/06/27 12:0 a.m.35 views

RHEL 7 : pki-core (RHSA-2018:1979)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:1979 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes: pki-core: Mishandled ACL...

8.1CVSS7.4AI score0.01516EPSS
Exploits0References21
RedhatCVE
RedhatCVE
added 2018/03/15 1:49 a.m.16 views

CVE-2018-1080

Dogtag PKI, through version 10.6.1, has a vulnerability in AAclAuthz.java that, under certain configurations, causes the application of ACL allow and deny rules to be reversed. If a server is configured to process allow rules before deny rules authz.evaluateOrder=allow,deny, then allow rules will...

8.1CVSS4.4AI score0.01516EPSS
Exploits0References1
Rows per page
Query Builder