Lucene search
+L

8 matches found

Debian CVE
Debian CVE
added 2022/02/16 4:37 p.m.39 views

CVE-2021-3551

A flaw was found in the PKI-server, where the spkispawn command, when run in debug mode, stores admin credentials in the installation log file. This flaw allows a local attacker to retrieve the file to obtain the admin password and gain admin privileges to the Dogtag CA manager. The highest threa...

7.8CVSS7.5AI score0.00186EPSS
Exploits0
CVE
CVE
added 2022/02/16 4:37 p.m.161 views

CVE-2021-3551

CVE-2021-3551 is described in connected documents as a vulnerability in the PKI-server where the spkispawn command, when run in debug mode, stores admin credentials in the installation log file. This allows a local attacker to retrieve the log and obtain the admin password, enabling admin privile...

7.8CVSS7.3AI score0.00186EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/06/05 12:0 a.m.75 views

CentOS 8 : pki-core:10.6 (CESA-2021:2235)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2021:2235 advisory. - pki-server: Dogtag installer pkispawn logs admin credentials into a world-readable log file CVE-2021-3551 Note that Nessus has not tested for this issue but h...

7.8CVSS7.3AI score0.00186EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/06/04 12:0 a.m.49 views

RHEL 8 : pki-core:10.6 (RHSA-2021:2235)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2235 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes: pki-server: Dogtag...

7.8CVSS7.4AI score0.00186EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/06/04 12:0 a.m.49 views

Oracle Linux 8 : pki-core:10.6 (ELSA-2021-2235)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-2235 advisory. pki-core 10.10.5-3.0.1 - Remove upstream reference. 10.10.5-3 - Bug 1960146 - CVE-2021-3551 Dogtag installer 'pkispawn' logs admin credentials into a...

7.8CVSS7.3AI score0.00186EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2021/06/04 12:0 a.m.73 views

pki-core:10.6 security update

pki-core 10.10.5-3.0.1 - Remove upstream reference. 10.10.5-3 - Bug 1960146 - CVE-2021-3551 Dogtag installer 'pkispawn' logs admin credentials into a world-readable log file...

7.8CVSS1.9AI score0.00186EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2021/06/03 11:16 a.m.67 views

Important: Red Hat Security Advisory: pki-core:10.6 security update

An update for the pki-core:10.6 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.8CVSS7.1AI score0.00186EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2021/06/03 7:53 a.m.64 views

Important: pki-core:10.6 security update

The Public Key Infrastructure PKI Core contains fundamental packages required by AlmaLinux Certificate System. Security Fixes: pki-server: Dogtag installer "pkispawn" logs admin credentials into a world-readable log file CVE-2021-3551 The PKI installer "pkispawn" logs admin credentials into a...

1AI score0.00186EPSS
Exploits0References1
Rows per page
Query Builder