CVE-2017-2590
Last modified
CVE-2017-2590 is a vulnerability of currently unknown severity. A vulnerability was found in ipa before 4.4. IdM's ca-del, ca-disable, and ca-enable commands did not properly check the user's permissions while modifying CAs in Dogtag. EPSS estimates a 1.28% chance of exploitation in the next 30 days.
Description
A vulnerability was found in ipa before 4.4. IdM's ca-del, ca-disable, and ca-enable commands did not properly check the user's permissions while modifying CAs in Dogtag. An authenticated, unauthorized attacker could use this flaw to delete, disable, or enable CAs causing various denial of service problems with certificate issuance, OCSP signing, and deletion of secret keys.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Freeipa | Freeipa | < 4.4.0 |
| Redhat | Enterprise Linux | 7.0 |
| Redhat | Enterprise Linux Desktop | 7.0 |
| Redhat | Enterprise Linux Server | 7.0 |
| Redhat | Enterprise Linux Server Aus | 7.3 |
| Redhat | Enterprise Linux Server Aus | 7.4 |
| Redhat | Enterprise Linux Server Eus | 7.3 |
| Redhat | Enterprise Linux Server Eus | 7.4 |
| Redhat | Enterprise Linux Server Eus | 7.5 |
| Redhat | Enterprise Linux Workstation | 7.0 |
References
- http://rhn.redhat.com/errata/RHSA-2017-0388.htmlThird Party Advisory
- http://www.securityfocus.com/bid/96557Third Party Advisory, VDB Entry
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2590Issue Tracking, Patch
- http://rhn.redhat.com/errata/RHSA-2017-0388.htmlThird Party Advisory
- http://www.securityfocus.com/bid/96557Third Party Advisory, VDB Entry
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2590Issue Tracking, Patch
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-2590?
How severe is CVE-2017-2590?
How do I fix CVE-2017-2590?
Are you affected by CVE-2017-2590?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST