Published: 13/08/2012 Updated: 29/08/2017

CVSS v2 Base Score: 5.5 | Impact Score: 4.9 | Exploitability Score: 8

VMScore: 490

Vector: AV:N/AC:L/Au:S/C:N/I:P/A:P

Red Hat Certificate System (RHCS) prior to 8.1.1 and Dogtag Certificate System does not properly check certificate revocation requests made through the web interface, which allows remote attackers with permissions to revoke end entity certificates to revoke the Certificate Authority (CA) certificate.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat certificate system 7.1
redhat dogtag certificate system
redhat certificate system
redhat certificate system 8.0
redhat certificate system 8
redhat certificate system 7.3
redhat certificate system 7.2

Synopsis Moderate: pki security and enhancement update Type/Severity Security Advisory: Moderate Topic Updated pki-common, pki-tps and pki-util packages that fix multiplesecurity issues and add one enhancement are now available for Red HatCertificate System 81The Red Hat Security Response Team has rated t ...

CWE-310 http://secunia.com/advisories/50013 https://bugzilla.redhat.com/show_bug.cgi?id=836268 http://www.securitytracker.com/id?1027284 https://fedorahosted.org/pki/changeset/2430 http://osvdb.org/84098 http://www.securityfocus.com/bid/54608 http://rhn.redhat.com/errata/RHSA-2012-1103.html https://exchange.xforce.ibmcloud.com/vulnerabilities/77102 https://access.redhat.com/errata/RHSA-2012:1103 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-3367

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect