← back
CVE-2012-3367

CVE-2012-3367

EPSS 1.2%
Red Hat Certificate System (RHCS) before 8.1.1 and Dogtag Certificate System does not properly check certificate revocation requests made through the web interface, which allows remote attackers with permissions to revoke end entity certificates to revoke the Certificate Authority (CA) certificate.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/84098http://rhn.redhat.com/errata/RHSA-2012-1103.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=836268http://secunia.com/advisories/50013https://exchange.xforce.ibmcloud.com/vulnerabilities/77102https://fedorahosted.org/pki/changeset/2430http://www.securityfocus.com/bid/54608http://www.securitytracker.com/id?1027284