Lucene search
K

9 matches found

OpenVAS
OpenVAS
added 2021/05/03 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for pki-core (EulerOS-SA-2021-1831)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.9AI score0.87218EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2021/03/18 12:0 a.m.48 views

CentOS 7 : pki-core (RHSA-2021:0851)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0851 advisory. - A Reflected Cross Site Scripting flaw was found in all pki-core 10.x.x versions module from the pki-core server due to the CA Agent Service not...

8.1CVSS6.8AI score0.01289EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2021/03/17 12:0 a.m.29 views

Oracle Linux 7 : pki-core (ELSA-2021-0851)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-0851 advisory. - Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token parameters in TPS resulting in stored XSS certificatesystem9-default edewata, asche...

8.1CVSS6.1AI score0.01289EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2021/03/16 1:53 p.m.60 views

Important: Red Hat Security Advisory: pki-core security and bug fix update

An update for pki-core is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

8.1CVSS6.8AI score0.8383EPSS
Exploits7References8
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.130 views

CentOS 8 : pki-core:10.6 and pki-deps:10.6 (CESA-2020:4847)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4847 advisory. - jquery: Cross-site scripting via cross-domain ajax requests CVE-2015-9251 - bootstrap: XSS in the data-target attribute CVE-2016-10735 - bootstrap:...

9.8CVSS7.5AI score0.9927EPSS
Exploits65References14
OpenVAS
OpenVAS
added 2020/12/15 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for pki-core (EulerOS-SA-2020-2560)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7.4AI score0.87218EPSS
Exploits4References2
Circl
Circl
added 2020/03/20 5:32 p.m.4 views

CVE-2019-10179

creationtimestamp| type| source ---|---|--- 2020-03-20 17:32:18+00:00| seen| https://t.me/cibsecurity/10655...

6.1CVSS5.7AI score0.00919EPSS
Exploits0References1
CVE
CVE
added 2020/03/20 1:57 p.m.211 views

CVE-2019-10179

CVE-2019-10179 affects all pki-core 10.x.x versions, specifically the Key Recovery Authority (KRA) Agent Service. The root cause is improper sanitization of the recovery request search page on the KRA, enabling a Reflected Cross Site Scripting (XSS) vulnerability. An authenticated user could be t...

6.1CVSS6.1AI score0.00919EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2020/02/03 4:47 p.m.32 views

CVE-2019-10179

It was found that the Key Recovery Authority KRA Agent Service did not properly sanitize recovery request search page, enabling a Reflected Cross Site Scripting XSS vulnerability. An attacker could trick an authenticated victim into executing specially crafted Javascript code...

6.1CVSS2.7AI score0.00919EPSS
Exploits0References3
Rows per page
Query Builder