Lucene search
+L

733 matches found

OSV
OSV
added 2016/09/07 8:59 p.m.9 views

CVE-2016-5404

The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...

6.5CVSS6.4AI score
Exploits0References9
OSV
OSV
added 2016/09/07 8:59 p.m.2 views

DEBIAN-CVE-2016-5404

The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...

6.5CVSS6.4AI score0.02585EPSS
Exploits0References1
Prion
Prion
added 2016/09/07 8:59 p.m.23 views

Command injection

The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...

4CVSS6.8AI score0.02585EPSS
Exploits0References9Affected Software2
UbuntuCve
UbuntuCve
added 2016/09/07 8:59 p.m.18 views

CVE-2016-5404

The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...

6.5CVSS6.7AI score0.02585EPSS
Exploits0References2
OSV
OSV
added 2016/09/07 8:59 p.m.2 views

UBUNTU-CVE-2016-5404

The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...

6.5CVSS6.7AI score0.02585EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2016/09/07 8:0 p.m.22 views

CVE-2016-5404

The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...

6.5CVSS6.2AI score0.02585EPSS
Exploits0
CVE
CVE
added 2016/09/07 8:0 p.m.84 views

CVE-2016-5404

The CVE-2016-5404 vulnerability affects FreeIPA’s cert_revoke command, which fails to enforce the revoke certificate permission. This allows remote authenticated users to revoke arbitrary certificates by leveraging the retrieve certificate permission. The issue is described across multiple adviso...

6.5CVSS6.3AI score0.02585EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2016/09/07 8:0 p.m.21 views

CVE-2016-5404

The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...

6.5AI score0.02585EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2016/09/06 4:18 p.m.24 views

CVE-2016-5414

FreeIPA 4.4.0 allows remote attackers to request an arbitrary SAN name for services...

7.5CVSS5.9AI score0.0103EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2016/09/01 12:0 a.m.2 views

PT-2016-6410 · Red Hat +2 · Freeipa +3

Name of the Vulnerable Software and Affected Versions: FreeIPA affected versions not specified Description: The issue concerns the cert revoke command in FreeIPA, which fails to check for the revoke certificate permission. This allows remote authenticated users to revoke arbitrary certificates by...

7.5CVSS6AI score0.047EPSS
Exploits0References34
Tenable Nessus
Tenable Nessus
added 2016/08/30 12:0 a.m.27 views

Fedora 23 : freeipa (2016-7898627d08)

security fix for CVE-2016-5404 related: https://bugzilla.redhat.com/showbug.cgi?id=1367883 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possibl...

6.5CVSS6.6AI score0.02585EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/08/30 12:0 a.m.27 views

Fedora 24 : freeipa (2016-92a3655b70)

Security fix for CVE-2016-5404 Along with second revision of 4.3.2 update. ---- Update to FreeIPA 4.3.2 http://www.freeipa.org/page/Releases/4.3.2 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted...

6.5CVSS6.6AI score0.02585EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/08/30 12:0 a.m.18 views

Fedora Update for freeipa FEDORA-2016-7898627d08

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.7AI score0.02585EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/08/30 12:0 a.m.23 views

Fedora Update for freeipa FEDORA-2016-92a3655b70

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.7AI score0.02585EPSS
Exploits0References2
Fedora
Fedora
added 2016/08/27 11:5 a.m.29 views

[SECURITY] Fedora 25 Update: freeipa-4.3.2-2.fc25

IPA is an integrated solution to provide centrally managed Identity users, hosts, services, Authentication SSO, 2FA, and Authorization host access control, SELinux user roles, services. The solution provides features for further integration with Linux based clients SUDO, automount and integration...

6.5CVSS3AI score0.02585EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.11 views

Fedora 23 : freeipa-4.2.2-1.fc23 (2015-4abcc8b937)

freeipa-4.2.2-1.fc23 - Update to upstream 4.2.2 - see http://www.freeipa.org/page/Releases/4.2.2 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

5.4AI score
Exploits0References7
Oracle linux
Oracle linux
added 2015/11/24 12:0 a.m.31 views

realmd security, bug fix, and enhancement update

0.16.1-5 - Revert 0.16.1-4 - Use samba by default - Resolves: rhbz1271618 0.16.1-4 - Fix regressions in 0.16.x releases - Resolves: rhbz1258745 - Resolves: rhbz1258488 0.16.1-3 - Fix regression accepting DNS domain names - Resolves: rhbz1243771 0.16.1-2 - Fix discarded patch: ipa-packages.patch...

5CVSS6.7AI score0.02915EPSS
Exploits0
Fedora
Fedora
added 2015/10/20 1:56 a.m.35 views

[SECURITY] Fedora 22 Update: sssd-1.13.1-2.fc22

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a plug-gable back-end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy...

6.8CVSS6.7AI score0.03666EPSS
Exploits0
Fedora
Fedora
added 2015/10/11 4:8 p.m.33 views

[SECURITY] Fedora 23 Update: sssd-1.13.1-2.fc23

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a plug-gable back-end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy...

6.8CVSS6.7AI score0.03666EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/07/07 12:0 a.m.24 views

Fedora Update for freeipa FEDORA-2015-4788

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.03123EPSS
Exploits0References2
Rows per page
Query Builder