CVE-2010-3869

Опубликовано: 17 нояб. 2010

Источник: nvd

CVSS2: 4

EPSS Низкий

Описание

Red Hat Certificate System (RHCS) 7.3 and 8 and Dogtag Certificate System allow remote authenticated users to generate an arbitrary number of certificates by replaying a single SCEP one-time PIN.

Ссылки

http://secunia.com/advisories/42181
Vendor Advisory
http://securitytracker.com/id?1024697
http://www.osvdb.org/69148
https://bugzilla.redhat.com/show_bug.cgi?id=648883
https://fedorahosted.org/pki/changeset/1246
Patch
https://rhn.redhat.com/errata/RHSA-2010-0837.html
Vendor Advisory
https://rhn.redhat.com/errata/RHSA-2010-0838.html
Vendor Advisory
http://secunia.com/advisories/42181
Vendor Advisory
http://securitytracker.com/id?1024697
http://www.osvdb.org/69148
https://bugzilla.redhat.com/show_bug.cgi?id=648883
https://fedorahosted.org/pki/changeset/1246
Patch
https://rhn.redhat.com/errata/RHSA-2010-0837.html
Vendor Advisory
https://rhn.redhat.com/errata/RHSA-2010-0838.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:redhat:certificate_system:7.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:certificate_system:8:*:*:*:*:*:*:*

Конфигурация 2

cpe:2.3:a:redhat:dogtag_certificate_system:*:*:*:*:*:*:*:*

EPSS

Процентиль: 42%

0.00197

Низкий

4 Medium

CVSS2

Дефекты

CWE-310

Связанные уязвимости

CVE-2010-3869

redhat

около 15 лет назад

Red Hat Certificate System (RHCS) 7.3 and 8 and Dogtag Certificate System allow remote authenticated users to generate an arbitrary number of certificates by replaying a single SCEP one-time PIN.

GHSA-5f9q-v927-crw8

github

больше 3 лет назад

Red Hat Certificate System (RHCS) 7.3 and 8 and Dogtag Certificate System allow remote authenticated users to generate an arbitrary number of certificates by replaying a single SCEP one-time PIN.

EPSS

Процентиль: 42%

0.00197

Низкий

4 Medium

CVSS2

Дефекты

CWE-310