cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-4727,https://securityvulnerability.io/vulnerability/CVE-2023-4727,Ldap Injection Vulnerability in dogtag-pki and pki-core Could Lead to Privilege Escalation,"A vulnerability exists within Red Hat's Dogtag PKI and pki-core products, where an attacker can exploit a flaw in the token authentication mechanism through an LDAP injection. By manipulating the query string parameter 'sessionID=*', the attacker may authenticate using an existing session stored in the LDAP directory server. This could potentially allow unauthorized access and lead to an escalation of privileges, compromising the integrity of the system and sensitive information.",Red Hat,"Red Hat Certificate System 10.4 Eus For Rhel-8,Red Hat Enterprise Linux 7,Red Hat Enterprise Linux 8,Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support,Red Hat Enterprise Linux 8.4 Telecommunications Update Service,Red Hat Enterprise Linux 8.4 Update Services For SAP Solutions,Red Hat Enterprise Linux 8.8 Extended Update Support,Red Hat Enterprise Linux 9,Red Hat Enterprise Linux 9.2 Extended Update Support,Red Hat Certificate System 10,Red Hat Enterprise Linux 6",7.5,HIGH,0.0004400000034365803,false,false,false,false,,false,false,2024-06-11T19:30:25.613Z,0
CVE-2017-7509,https://securityvulnerability.io/vulnerability/CVE-2017-7509,,An input validation error was found in Red Hat Certificate System's handling of client provided certificates before 8.1.20-1. If the certreq field is not present in a certificate an assertion error is triggered causing a denial of service.,Red Hat,Certificate System,3.5,LOW,0.0013200000394135714,false,false,false,false,,false,false,2018-07-26T16:00:00.000Z,0