Lucene search
+L

8 matches found

CVE
CVE
added 2022/02/16 4:37 p.m.164 views

CVE-2021-3551

CVE-2021-3551 is described in connected documents as a vulnerability in the PKI-server where the spkispawn command, when run in debug mode, stores admin credentials in the installation log file. This allows a local attacker to retrieve the log and obtain the admin password, enabling admin privile...

7.8CVSS7.3AI score0.00186EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2022/02/16 4:37 p.m.43 views

CVE-2021-3551

A flaw was found in the PKI-server, where the spkispawn command, when run in debug mode, stores admin credentials in the installation log file. This flaw allows a local attacker to retrieve the file to obtain the admin password and gain admin privileges to the Dogtag CA manager. The highest threa...

7.8CVSS7.5AI score0.00186EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/06/05 12:0 a.m.75 views

CentOS 8 : pki-core:10.6 (CESA-2021:2235)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2021:2235 advisory. - pki-server: Dogtag installer pkispawn logs admin credentials into a world-readable log file CVE-2021-3551 Note that Nessus has not tested for this issue but h...

7.8CVSS7.3AI score0.00186EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2021/06/04 12:0 a.m.73 views

pki-core:10.6 security update

pki-core 10.10.5-3.0.1 - Remove upstream reference. 10.10.5-3 - Bug 1960146 - CVE-2021-3551 Dogtag installer 'pkispawn' logs admin credentials into a world-readable log file...

7.8CVSS1.9AI score0.00186EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/06/04 12:0 a.m.49 views

Oracle Linux 8 : pki-core:10.6 (ELSA-2021-2235)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-2235 advisory. pki-core 10.10.5-3.0.1 - Remove upstream reference. 10.10.5-3 - Bug 1960146 - CVE-2021-3551 Dogtag installer 'pkispawn' logs admin credentials into a...

7.8CVSS7.3AI score0.00186EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/06/04 12:0 a.m.49 views

RHEL 8 : pki-core:10.6 (RHSA-2021:2235)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2235 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes: pki-server: Dogtag...

7.8CVSS7.4AI score0.00186EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/06/03 11:16 a.m.67 views

Important: Red Hat Security Advisory: pki-core:10.6 security update

An update for the pki-core:10.6 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.8CVSS7.1AI score0.00186EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2021/06/03 7:53 a.m.64 views

Important: pki-core:10.6 security update

The Public Key Infrastructure PKI Core contains fundamental packages required by AlmaLinux Certificate System. Security Fixes: pki-server: Dogtag installer "pkispawn" logs admin credentials into a world-readable log file CVE-2021-3551 The PKI installer "pkispawn" logs admin credentials into a...

1AI score0.00186EPSS
Exploits0References1
Rows per page
Query Builder