Vulnerabilities in FreeIPA
2 resultsCVE-2017-12169—It was found that FreeIPA 4.2.0 and later could disclose password hashes to users having the 'System: Read Stage Users' permission. A remoteEPSS 1.9%CVE-2016-9575—Ipa versions 4.2.x, 4.3.x before 4.3.3 and 4.4.x before 4.4.3 did not properly check the user's permissions while modifying certificate profEPSS 0.8%