Insufficient Permission Check
freeipa does not properly check changes to the Dogtag configuration and allows an unauthenticated user to modify profiles through the IdM's certprofile-mod command. This vulnerability can be exploited by an unauthenticated attacker to perform further attacks by modifying profiles to issue...