CVE-2012-3367
System: CA certificate can be revoked
Severity Score
5.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Red Hat Certificate System (RHCS) before 8.1.1 and Dogtag Certificate System does not properly check certificate revocation requests made through the web interface, which allows remote attackers with permissions to revoke end entity certificates to revoke the Certificate Authority (CA) certificate.
Red Hat Certificate System (RHCS) antes de v8.1.1 y Dogtag Certificate System no comprueban correctamente las solicitudes de revocación de certificados realizadas a través de la interfaz web, lo que permite revocar los certificados finales de entidad que revocan certificados de autoridad de certificación (CA) a atacantes remotos con permisos.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-06-14 CVE Reserved
- 2012-07-19 CVE Published
- 2023-05-01 EPSS Updated
- 2024-08-06 CVE Updated
- 2024-08-06 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-310: Cryptographic Issues
CAPEC
References (9)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/84098 | Vdb Entry | |
| http://www.securityfocus.com/bid/54608 | Vdb Entry | |
| http://www.securitytracker.com/id?1027284 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/77102 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://fedorahosted.org/pki/changeset/2430 | 2024-08-06 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://rhn.redhat.com/errata/RHSA-2012-1103.html | 2017-08-29 | |
| http://secunia.com/advisories/50013 | 2017-08-29 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=836268 | 2012-07-19 | |
| https://access.redhat.com/security/cve/CVE-2012-3367 | 2012-07-19 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Redhat Search vendor "Redhat" | Certificate System Search vendor "Redhat" for product "Certificate System" | <= 8.1 Search vendor "Redhat" for product "Certificate System" and version " <= 8.1" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Certificate System Search vendor "Redhat" for product "Certificate System" | 7.1 Search vendor "Redhat" for product "Certificate System" and version "7.1" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Certificate System Search vendor "Redhat" for product "Certificate System" | 7.2 Search vendor "Redhat" for product "Certificate System" and version "7.2" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Certificate System Search vendor "Redhat" for product "Certificate System" | 7.3 Search vendor "Redhat" for product "Certificate System" and version "7.3" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Certificate System Search vendor "Redhat" for product "Certificate System" | 8 Search vendor "Redhat" for product "Certificate System" and version "8" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Certificate System Search vendor "Redhat" for product "Certificate System" | 8.0 Search vendor "Redhat" for product "Certificate System" and version "8.0" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Dogtag Certificate System Search vendor "Redhat" for product "Dogtag Certificate System" | * | - |
Affected
| ||||||