Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2012-5484

Опубликовано: 23 янв. 2013
Источник: redhat
CVSS2: 6.8
EPSS Низкий

Описание

The client in FreeIPA 2.x and 3.x before 3.1.2 does not properly obtain the Certification Authority (CA) certificate from the server, which allows man-in-the-middle attackers to spoof a join procedure via a crafted certificate.

Ссылки на источники

Дополнительная информация

Статус:

Important
https://bugzilla.redhat.com/show_bug.cgi?id=876307ipa: weakness when initiating join from IPA client can potentially compromise IPA domain

EPSS

Процентиль: 66%
0.00532
Низкий

6.8 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2012-5484

ubuntu
почти 13 лет назад

The client in FreeIPA 2.x and 3.x before 3.1.2 does not properly obtain the Certification Authority (CA) certificate from the server, which allows man-in-the-middle attackers to spoof a join procedure via a crafted certificate.

nvd логотип

CVE-2012-5484

nvd
почти 13 лет назад

The client in FreeIPA 2.x and 3.x before 3.1.2 does not properly obtain the Certification Authority (CA) certificate from the server, which allows man-in-the-middle attackers to spoof a join procedure via a crafted certificate.

github логотип

GHSA-6rr4-9qrg-g6j5

github
больше 3 лет назад

The client in FreeIPA 2.x and 3.x before 3.1.2 does not properly obtain the Certification Authority (CA) certificate from the server, which allows man-in-the-middle attackers to spoof a join procedure via a crafted certificate.

oracle-oval логотип

ELSA-2013-0189

oracle-oval
почти 13 лет назад

ELSA-2013-0189: ipa-client security update (IMPORTANT)

oracle-oval логотип

ELSA-2013-0188

oracle-oval
почти 13 лет назад

ELSA-2013-0188: ipa security update (IMPORTANT)

EPSS

Процентиль: 66%
0.00532
Низкий

6.8 Medium

CVSS2