idm-pki-server (AlmaLinux:9) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:9 package idm-pki-server, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2023-4727 — CVSS 7.5 (high): A flaw was found in dogtag-pki and pki-core. The token authentication scheme can be bypassed with a LDAP injection. By passing the query…
CVE-2022-2393 — CVSS 5.7 (medium): A flaw was found in pki-core, which could allow a user to get a certificate for another user identity when directory-based authentication…