EPSS
Percentile
22.7%
pki-core is vulnerable to cross-site scripting. The vulnerability exists due to the pki-core’s Token Processing Service (TPS) not properly sanitizing Profile IDs.
access.redhat.com/errata/RHSA-2021:0947
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1780707
bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1696