Red Hat Red Hat Certificate System Agent cross site scripting
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.0 | $0-$5k | 0.00 |
Summary
A vulnerability has been found in Red Hat Red Hat Certificate System and classified as problematic. Affected is an unknown function of the component Agent. This manipulation causes cross site scripting. This vulnerability is registered as CVE-2012-2662. Remote exploitation of the attack is possible. Furthermore, an exploit is available. It is suggested to install a patch to address this issue.
Details
A vulnerability was found in Red Hat Red Hat Certificate System (the affected version unknown). It has been declared as critical. Affected by this vulnerability is an unknown part of the component Agent. The manipulation with an unknown input leads to a cross site scripting vulnerability. The CWE definition for the vulnerability is CWE-79. The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. As an impact it is known to affect confidentiality, integrity, and availability. The summary by CVE is:
Multiple cross-site scripting (XSS) vulnerabilities in Red Hat Certificate System (RHCS) before 8.1.1 and Dogtag Certificate System allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to the (1) System Agent or (2) End Entity pages.
The weakness was published 07/19/2012 by Agent with Red Hat as RHSA-2012:1103 as confirmed advisory (Red Hat Security Advisory). The advisory is shared at rhn.redhat.com. This vulnerability is known as CVE-2012-2662 since 05/14/2012. The exploitation appears to be easy. The attack can be launched remotely. The exploitation doesn't need any form of authentication. It demands that the victim is doing some kind of user interaction. Technical details are unknown but an exploit is available. MITRE ATT&CK project uses the attack technique T1059.007 for this issue.
It is declared as highly functional. The vulnerability scanner Nessus provides a plugin with the ID 78928 (RHEL 5 : pki (RHSA-2012:1103)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Red Hat Local Security Checks. The commercial vulnerability scanner Qualys is able to test this issue with plugin 123746 (Red Hat Update for pki-core (RHSA-2015:1347)).
Applying a patch is able to eliminate this problem. The bugfix is ready for download at rhn.redhat.com. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at X-Force (77101), Tenable (78928), SecurityFocus (BID 54608†), OSVDB (84099†) and Secunia (SA50013†). Similar entry is available at VDB-5784. Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Product
Vendor
Name
License
Website
- Vendor: https://www.redhat.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 6.3VulDB Meta Temp Score: 6.0
VulDB Base Score: 6.3
VulDB Temp Score: 6.0
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Cross site scriptingCWE: CWE-79 / CWE-94 / CWE-74
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Highly functional
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 78928
Nessus Name: RHEL 5 : pki (RHSA-2012:1103)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Port: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: PatchStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Patch: rhn.redhat.com
Timeline
05/14/2012 🔍07/19/2012 🔍
07/19/2012 🔍
07/19/2012 🔍
07/19/2012 🔍
07/20/2012 🔍
07/22/2012 🔍
07/30/2012 🔍
08/05/2012 🔍
08/13/2012 🔍
09/20/2012 🔍
11/07/2014 🔍
04/22/2025 🔍
Sources
Vendor: redhat.comAdvisory: RHSA-2012:1103
Researcher: Agent
Organization: Red Hat
Status: Confirmed
CVE: CVE-2012-2662 (🔍)
GCVE (CVE): GCVE-0-2012-2662
GCVE (VulDB): GCVE-100-5785
X-Force: 77101 - Red Hat Certificate System Agent and End Entity pages cross-site scripting, Medium Risk
SecurityFocus: 54608 - Red Hat Certificate System Multiple Cross Site Scripting and Security Bypass Vulnerabilities
Secunia: 50013 - Red Hat Certificate System Cross-Site Scripting and Security Bypass Vulnerabilities, Less Critical
OSVDB: 84099
SecurityTracker: 1027284 - Red Hat Certificate System Bugs Let Remote Users Conduct Cross-Site Scripting and Denial of Service Attacks
Vulnerability Center: 36176 - Red Hat Certificate System Before 8.1.1 \\ Dogtag Certificate System Multiple XSS Vulnerabilities, Medium
scip Labs: https://www.scip.ch/en/?labs.20161013
See also: 🔍
Entry
Created: 07/30/2012 11:50Updated: 04/22/2025 21:54
Changes: 07/30/2012 11:50 (73), 04/17/2017 11:04 (12), 03/26/2021 16:14 (3), 12/31/2024 08:22 (20), 04/22/2025 21:54 (2)
Complete: 🔍
Cache ID: 216:039:103
No comments yet. Languages: en.
Please log in to comment.