CVE-2016-9575
MEDIUMFreeIPA 4.2.x, 4.3.x < 4.3.3, 4.4.x < 4.4.3 - Authenticated Certificate Profile Modification via certprofile-mod Command
Title source: llmDescription
Ipa versions 4.2.x, 4.3.x before 4.3.3 and 4.4.x before 4.4.3 did not properly check the user's permissions while modifying certificate profiles in IdM's certprofile-mod command. An authenticated, unprivileged attacker could use this flaw to modify profiles to issue certificates with arbitrary naming or key usage information and subsequently use such certificates for other attacks.
References (3)
Core 3
Core References
Issue Tracking, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1395311
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/95068
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2017-0001.html
Scores
CVSS v3
6.3
EPSS
0.0079
EPSS Percentile
51.3%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Details
CWE
CWE-285
CWE-863
Status
published
Products (11)
freeipa/freeipa
4.2.0 (2 CPE variants)
freeipa/freeipa
4.2.1
freeipa/freeipa
4.2.2
freeipa/freeipa
4.2.3
freeipa/freeipa
4.2.4
freeipa/freeipa
4.3.0
freeipa/freeipa
4.3.1
freeipa/freeipa
4.3.2
freeipa/freeipa
4.4.0
freeipa/freeipa
4.4.1
... and 1 more
Published
Mar 13, 2018
Tracked Since
Feb 18, 2026