CVE-2016-5404 in FreeIPAinfo

Zusammenfassung

von MITRE

The cert_revoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

10.06.2016

Veröffentlichung

07.09.2016

Moderieren

akzeptiert

Eintrag

VDB-91353

CPE

bereit

CWE

CWE-284 (bestätigt)

CVSS

6.5 (NVD)

EPSS

0.00467

KEV

nein

Aktivitäten

very low

Sektor

Industry, Education, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-5404
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-5404
CVE Details	https://www.cvedetails.com/cve/CVE-2016-5404/

◂ Zurück Übersicht Weiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!