Описание
ipa-kra-install in FreeIPA before 4.2.2 puts the CA agent certificate and private key in /etc/httpd/alias/kra-agent.pem, which is world readable.
Ссылки
- Issue TrackingMailing ListPatchThird Party Advisory
- Issue TrackingThird Party Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
- Issue TrackingMailing ListPatchThird Party Advisory
- Issue TrackingThird Party Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.2.1 (включая)
cpe:2.3:a:freeipa:freeipa:*:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00297
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 9.8
ubuntu
больше 8 лет назад
ipa-kra-install in FreeIPA before 4.2.2 puts the CA agent certificate and private key in /etc/httpd/alias/kra-agent.pem, which is world readable.
redhat
больше 10 лет назад
ipa-kra-install in FreeIPA before 4.2.2 puts the CA agent certificate and private key in /etc/httpd/alias/kra-agent.pem, which is world readable.
CVSS3: 9.8
debian
больше 8 лет назад
ipa-kra-install in FreeIPA before 4.2.2 puts the CA agent certificate ...
CVSS3: 9.8
github
больше 3 лет назад
ipa-kra-install in FreeIPA before 4.2.2 puts the CA agent certificate and private key in /etc/httpd/alias/kra-agent.pem, which is world readable.
EPSS
Процентиль: 53%
0.00297
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-200