CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
93.3%
Format string vulnerability in the token processing system (pki-tps) in Red Hat Certificate System (RHCS) 8.1 and possibly Dogtag Certificate System 9 and 10 allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in unspecified vectors, related to viewing certificates.
Vendor | Product | Version | CPE |
---|---|---|---|
redhat | certificate_system | 8.1 | cpe:2.3:a:redhat:certificate_system:8.1:*:*:*:*:*:*:* |
redhat | dogtag_certificate_system | 9.0 | cpe:2.3:a:redhat:dogtag_certificate_system:9.0:*:*:*:*:*:*:* |
redhat | dogtag_certificate_system | 10.0 | cpe:2.3:a:redhat:dogtag_certificate_system:10.0:*:*:*:*:*:*:* |