3 matches found
CVE-2021-3469
Foreman versions before 2.3.4 and before 2.4.0 is affected by an improper authorization handling flaw. An authenticated attacker can impersonate the foreman-proxy if product enable the Puppet Certificate authority CA to sign certificate requests that have subject alternative names SANs. Foreman d...
Authentication flaw
Red Hat Certificate System RHCS before 8.1.1 and Dogtag Certificate System does not properly check certificate revocation requests made through the web interface, which allows remote attackers with permissions to revoke end entity certificates to revoke the Certificate Authority CA certificate...
Scientific Linux Security Update : kdelibs on SL6.x i386/x86_64
The kdelibs packages provide libraries for the K Desktop Environment KDE. An input sanitization flaw was found in the KSSL KDE SSL Wrapper API. An attacker could supply a specially crafted SSL certificate for example, via a web page to an application using KSSL, such as the Konqueror web browser,...