exploitDog

CVE-2009-0588

Опубликовано: 10 фев. 2009

Источник: redhat

CVSS2: 3.5

EPSS Низкий

Описание

agent/request/op.cgi in the Registration Authority (RA) component in Red Hat Certificate System (RHCS) 7.3 and Dogtag Certificate System allows remote authenticated users to approve certificate requests queued for arbitrary agent groups via a modified request ID field.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=488706rhpki-ra: improper authorization checks in Cerificate System's Registration Authority

EPSS

Процентиль: 64%

0.00461

Низкий

3.5 Low

CVSS2

Связанные уязвимости

CVE-2009-0588

nvd

больше 16 лет назад

agent/request/op.cgi in the Registration Authority (RA) component in Red Hat Certificate System (RHCS) 7.3 and Dogtag Certificate System allows remote authenticated users to approve certificate requests queued for arbitrary agent groups via a modified request ID field.

GHSA-8q6c-cq42-3qq7

github

почти 4 года назад

agent/request/op.cgi in the Registration Authority (RA) component in Red Hat Certificate System (RHCS) 7.3 and Dogtag Certificate System allows remote authenticated users to approve certificate requests queued for arbitrary agent groups via a modified request ID field.

EPSS

Процентиль: 64%

0.00461

Низкий

3.5 Low

CVSS2