Vulnerabilities > Primekey
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-01 | CVE-2022-40711 | Cross-site Scripting vulnerability in Primekey Ejbca 7.9.0.2 PrimeKey EJBCA 7.9.0.2 Community allows stored XSS in the End Entity section. | 4.8 |
| 2022-09-14 | CVE-2022-34831 | Improper Certificate Validation vulnerability in Primekey Ejbca An issue was discovered in Keyfactor PrimeKey EJBCA before 7.9.0, related to possible inconsistencies in DNS identifiers submitted in an ACME order and the corresponding CSR submitted during finalization. | 9.8 |
| 2022-03-21 | CVE-2022-26494 | Cross-site Scripting vulnerability in Primekey Signserver An XSS was identified in the Admin Web interface of PrimeKey SignServer before 5.8.1. | 4.8 |
| 2021-08-25 | CVE-2021-40086 | Information Exposure vulnerability in Primekey Ejbca An issue was discovered in PrimeKey EJBCA before 7.6.0. | 2.2 |
| 2021-08-25 | CVE-2021-40087 | Cleartext Storage of Sensitive Information vulnerability in Primekey Ejbca An issue was discovered in PrimeKey EJBCA before 7.6.0. | 2.7 |
| 2021-08-25 | CVE-2021-40088 | Missing Authorization vulnerability in Primekey Ejbca An issue was discovered in PrimeKey EJBCA before 7.6.0. | 5.4 |
| 2021-08-25 | CVE-2021-40089 | Unspecified vulnerability in Primekey Ejbca An issue was discovered in PrimeKey EJBCA before 7.6.0. | 2.3 |
| 2020-11-19 | CVE-2020-28942 | Improper Certificate Validation vulnerability in Primekey Ejbca An issue exists in PrimeKey EJBCA before 7.4.3 when enrolling with EST while proxied through an RA over the Peers protocol. | 4.3 |
| 2020-09-11 | CVE-2020-25276 | Improper Certificate Validation vulnerability in Primekey Ejbca An issue was discovered in PrimeKey EJBCA 6.x and 7.x before 7.4.1. | 7.3 |
| 2020-04-08 | CVE-2020-11631 | Unspecified vulnerability in Primekey Ejbca An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. | 6.5 |