Vulnerabilities > Primekey

DATE CVE VULNERABILITY TITLE RISK
2023-01-01 CVE-2022-40711 Cross-site Scripting vulnerability in Primekey Ejbca 7.9.0.2
PrimeKey EJBCA 7.9.0.2 Community allows stored XSS in the End Entity section.
network
low complexity
primekey CWE-79
4.8
2022-03-21 CVE-2022-26494 Cross-site Scripting vulnerability in Primekey Signserver
An XSS was identified in the Admin Web interface of PrimeKey SignServer before 5.8.1.
network
primekey CWE-79
3.5
2021-08-25 CVE-2021-40086 Information Exposure vulnerability in Primekey Ejbca
An issue was discovered in PrimeKey EJBCA before 7.6.0.
network
primekey CWE-200
3.5
2021-08-25 CVE-2021-40087 Cleartext Storage of Sensitive Information vulnerability in Primekey Ejbca
An issue was discovered in PrimeKey EJBCA before 7.6.0.
network
low complexity
primekey CWE-312
4.0
2021-08-25 CVE-2021-40088 Missing Authorization vulnerability in Primekey Ejbca
An issue was discovered in PrimeKey EJBCA before 7.6.0.
network
primekey CWE-862
4.9
2021-08-25 CVE-2021-40089 Unspecified vulnerability in Primekey Ejbca
An issue was discovered in PrimeKey EJBCA before 7.6.0.
local
primekey
1.9
2020-11-19 CVE-2020-28942 Improper Certificate Validation vulnerability in Primekey Ejbca
An issue exists in PrimeKey EJBCA before 7.4.3 when enrolling with EST while proxied through an RA over the Peers protocol.
network
low complexity
primekey CWE-295
4.0
2020-09-11 CVE-2020-25276 Improper Certificate Validation vulnerability in Primekey Ejbca 7.0.0/7.3.1.2
An issue was discovered in PrimeKey EJBCA 6.x and 7.x before 7.4.1.
network
primekey CWE-295
6.8
2020-04-08 CVE-2020-11631 Improper Input Validation vulnerability in Primekey Ejbca 7.0.0
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2.
network
low complexity
primekey CWE-20
4.0
2020-04-08 CVE-2020-11630 Deserialization of Untrusted Data vulnerability in Primekey Ejbca 7.0.0
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2.
network
low complexity
primekey CWE-502
7.5