8 matches found
ROS-20251112-04
The FreeIpa server vulnerability is related to the fact that the application does not check the canonical name root@REALM, which can also be used as a realm administrator name. Exploitation of the vulnerability could allow an attacker acting remotely to escalate privileges from the host level to...
The vulnerability of the FreeIpa server, related to insufficient protection of service data, allows attackers to circumvent existing security restrictions and disclose the protected information.
The vulnerability of the FreeIpa server is related to insufficient protection of operational data. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and disclose the protected information...
ROS-20240423-05
The FreeIpa server kinit command context vulnerability is related to sending HTTP requests with parameters, that can be interpreted as command arguments to kinit. Exploitation of the vulnerability could Allow an attacker acting remotely to cause a denial of service to the system...
The vulnerability of the login_password component in the FreeIpa server allows a attacker to perform a CSRF attack.
The vulnerability of the loginpassword component in the FreeIpa server relates to the sending of user requests that can perform actions on behalf of the user. Exploiting this vulnerability could allow a malicious actor to carry out a CSRF attack remotely...
The vulnerability of the FreeIPA server relates to the incorrect duration of a session, which allows a perpetrator to gain access to the session.
The vulnerability of the FreeIPA server is related to the incorrect duration of the session. Exploiting this vulnerability can allow a hacker to gain access to the session...
The vulnerability of the FreeIPA server, related to improper access control, allows a perpetrator to compromise data integrity.
The vulnerability of the FreeIPA server is related to a configuration error, where multiple network interfaces are present. Exploiting this vulnerability could allow a remote attacker to compromise the integrity of the data...
The vulnerability of the FreeIPA server, related to improper access control, allows a perpetrator to compromise data integrity.
The vulnerability of the FreeIPA server is related to improper initialization. Exploiting this vulnerability could allow an attacker to compromise data integrity...
The vulnerability of the fly-admin-freeipa-server graphical tool for running the FreeIPA service on the Astra Linux operating system involves disclosing information through registration files. This allows a perpetrator to access confidential data and compromise its integrity.
The vulnerability of the fly-admin-freeipa-server graphical tool for running the FreeIPA service on the Astra Linux operating system is related to an error in the handling of options when creating and deleting domains, as well as errors in the handling of restart information. Exploiting this...