Arbitrary Certificate Generation Vulnerability in Red Hat Certificate System and Dogtag Certificate System

Arbitrary Certificate Generation Vulnerability in Red Hat Certificate System and Dogtag Certificate System

CVE-2010-3869 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

Red Hat Certificate System (RHCS) 7.3 and 8 and Dogtag Certificate System allow remote authenticated users to generate an arbitrary number of certificates by replaying a single SCEP one-time PIN.

Learn more about our User Device Pen Test.