10 matches found
Security update for NetworkManager
This update for NetworkManager fixes the following issues: CVE-2025-9615: non-admin users are allowed to use certificates from other users bsc1257359. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
EUVD-2017-17149
Malware in sbrugna...
EUVD-2012-1132
Malware in sbrugna...
nodejs: process interuption due to invalid Public Key information in x509 certificates
A vulnerability has been identified in the Node.js, where an invalid public key is used to create an x509 certificate using the crypto.X509Certificate API a non-expect termination occurs making it susceptible to DoS attacks when the attacker could force interruptions of application processing, as...
Moderate: Red Hat Security Advisory: pki-core security, bug fix, and enhancement update
An update for jss, ldapjdk, pki-core, and tomcatjss is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...
RHEL 7 : pki-core (RHSA-2022:7086)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:7086 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes: pki-core: When using the...
Living off the land, AD CS style
Introduction Unless you have been living under a rock for the last year or so, Active Directory Certificate Services AD CS abuse continues to be a hot topic in offensive security, ever since the excellent research released by Will Schroeder @harmj0y and Lee Christensen @tifkin. I, like many, have...
The vulnerability of the FortiOS operating system, related to deficiencies in access control, allows attackers to obtain secret keys embedded in the system or certificates uploaded by users.
The vulnerability of the FortiOS operating system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to obtain secret keys that are built into the system or certificates uploaded by users. This can occur either through resetting the encryption keys’...
July 12, 2016 — KB3172985 (OS Build 10586.494)
July 12, 2016 — KB3172985 OS Build 10586.494 This update includes quality improvements and security fixes. No new operating system features are being introduced in this update. Key changes include: Improved reliability of Windows Media Player, Internet Explorer 11, Windows Explorer, Miracast, and...
XenMobile Server - Identity credential certificates (PKI) do not auto renew
MSCA Certificates can be set to expire on a certain interval, after hitting the XMS renewal policy default 30 days before expiration. User Certificates PKI are not renewing, leaving expired certificates on devices...