Remote attackers can revoke CA certificate in Red Hat and Dogtag Certificate Systems

Remote attackers can revoke CA certificate in Red Hat and Dogtag Certificate Systems

CVE-2012-3367 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:P

Red Hat Certificate System (RHCS) before 8.1.1 and Dogtag Certificate System does not properly check certificate revocation requests made through the web interface, which allows remote attackers with permissions to revoke end entity certificates to revoke the Certificate Authority (CA) certificate.

Learn more about our Web App Pen Testing.