AD/CS Authenticated Web Enrollment Services Module

Authenticates to the AD/CS Web enrollment service and allows the user to query templates and create certificates based on available templates. Module Options msf use auxiliary/admin/http/webenrollmentcert msf auxiliarywebenrollmentcert show actions ...actions... msf auxiliarywebenrollmentcert set...

Smallstep step-ca 安全漏洞

Smallstep step-ca is an online certificate authority for secure, automated certificate management for DevOps from Smallstep USA. A security vulnerability exists in Smallstep step-ca that stems from an authorization check being bypassed, which could result in the creation of a certificate without...

CVE-2025-41721

A high privileged remote attacker can influence the parameters passed to the openssl command due to improper neutralization of special elements when adding a password protected self-signed certificate...

CVE-2025-41721

A high privileged remote attacker can influence the parameters passed to the openssl command due to improper neutralization of special elements when adding a password protected self-signed certificate...

The vulnerability of the authentication method used by the Vault Enterprise and Vault Community Edition archiving platforms for corporate information allows a perpetrator to create malicious certificates.

The vulnerability of the authentication method used by the Vault Enterprise and Vault Community Edition archiving platforms for corporate information is related to errors in the certificate validation process. Exploiting this vulnerability could allow an attacker to create malicious certificates...

UBUNTU-CVE-2025-6224

Certificate generation in juju/utils using the cert.NewLeaf function could include private information. If this certificate were then transferred over the network in plaintext, an attacker listening on that network could sniff the certificate and trivially extract the private key from it...

Citrix Endpoint Management: Certificates Guide

Introduction Managing SSL certificates effectively is crucial for maintaining the security and functionality of Citrix XenMobile environments. Issues with certificate installation and troubleshooting can lead to significant system vulnerabilities and access problems. This collection of articles...

CVE-2023-39335 - Certificate creation authentication bypass in UPDATEPROFILE handler

Last Modified Date Dec 11, 2025 1:35:01 PM...

PYSEC-2021-881

The FTL Server tibftlserver and Docker images containing tibftlserver components of TIBCO Software Inc.'s TIBCO ActiveSpaces - Community Edition, TIBCO ActiveSpaces - Developer Edition, TIBCO ActiveSpaces - Enterprise Edition, TIBCO FTL - Community Edition, TIBCO FTL - Developer Edition, TIBCO FT...

The vulnerability of the software for creating a private virtual network, astra-openvpn-server, relates to the bypass of authentication due to a fundamental error. This allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the software used to create the private virtual network astra-openvpn-serve is related to the improper creation of certificates, which are generated without authentication parameters. Exploiting this vulnerability allows a malicious actor to gain access to confidential data,...

The vulnerability of the FreeIPA Astra-freeipa certificate creation and update tool is related to an unreliable search process, which allows a perpetrator to compromise the integrity of the data.

The vulnerability of the FreeIPA Astra-freeipa certificate creation and renewal tool is related to improper searching for existing keys. Exploiting this vulnerability allows a remote attacker to compromise the integrity of data...

Debian DSA-4837-1 : salt - security update

Several vulnerabilities were discovered in salt, a powerful remote execution manager. The flaws could result in authentication bypass and invocation of Salt SSH, creation of certificates with weak file permissions via the TLS execution module or shell injections with the Salt API using the SSH...

CVE-2018-16395

An issue was discovered in the OpenSSL library in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. When two OpenSSL::X509::Name objects are compared using ==, depending on the ordering, non-equal objects may return true. When the first argument is one...

The vulnerability of the process for creating management certificates, which involves identifying and accessing the server for service providers of Juniper Networks’ SBR Carrier, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the process for creating certificates that manage identity and access to servers for Juniper Networks SBR Carrier service providers is related to deficiencies in the protection of registration data. Exploiting this vulnerability could allow a perpetrator to gain unauthorized...

Code injection

vdsm: certificate generation upon node creation allowing vdsm to start and serve requests from anyone who has a matching key and certificate...

Cisco Identity Services Engine Arbitrary Client Certificate Creation Vulnerability

A vulnerability in the External RESTful Services ERS API of the Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to generate arbitrary certificates signed by the InternalCertificate Authority CA Services on ISE. This vulnerability is due to an incorrect...

CVE-2019-1851 Cisco Identity Services Engine Arbitrary Client Certificate Creation Vulnerability

A vulnerability in the External RESTful Services ERS API of the Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to generate arbitrary certificates signed by the Internal Certificate Authority CA Services on ISE. This vulnerability is due to an incorrect...

CVE-2018-16090

In System Management Module SMM versions prior to 1.06, the SMM certificate creation and parsing logic is vulnerable to post-authentication command injection...

Command injection

In System Management Module SMM versions prior to 1.06, the SMM certificate creation and parsing logic is vulnerable to post-authentication command injection...

CVE-2018-16090

In System Management Module SMM versions prior to 1.06, the SMM certificate creation and parsing logic is vulnerable to post-authentication command injection...