Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. An error state can be generated in the CA UI by a malicious user. This, in turn, allows exploitation of other bugs. This follow-on exploitation can lead to privilege escalation and remote code execution. (This is exploitable only when at least one accessible port lacks a requirement for client certificate authentication. These ports are 8442 or 8080 in a standard installation.)
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PrimeKey Solutions EJBCA 输入验证错误漏洞
Vulnerability Description
PrimeKey Solutions EJBCA是瑞典PrimeKey Solutions公司的一款软件公钥基础结构证书颁发机构软件包。 PrimeKey Solutions EJBCA 6.15.2.6之前版本和7.3.1.2之前的7.x版本中的CA UI中存在输入验证错误漏洞。该漏洞源于网络系统或产品未对输入的数据进行正确的验证。
CVSS Information
N/A
Vulnerability Type
N/A