Vulnerabilities > Primekey > Ejbca
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-01 | CVE-2022-40711 | Cross-site Scripting vulnerability in Primekey Ejbca 7.9.0.2 PrimeKey EJBCA 7.9.0.2 Community allows stored XSS in the End Entity section. | 4.8 |
| 2022-09-14 | CVE-2022-34831 | Improper Certificate Validation vulnerability in Primekey Ejbca An issue was discovered in Keyfactor PrimeKey EJBCA before 7.9.0, related to possible inconsistencies in DNS identifiers submitted in an ACME order and the corresponding CSR submitted during finalization. | 9.8 |
| 2021-08-25 | CVE-2021-40086 | Information Exposure vulnerability in Primekey Ejbca An issue was discovered in PrimeKey EJBCA before 7.6.0. | 2.2 |
| 2021-08-25 | CVE-2021-40087 | Cleartext Storage of Sensitive Information vulnerability in Primekey Ejbca An issue was discovered in PrimeKey EJBCA before 7.6.0. | 2.7 |
| 2021-08-25 | CVE-2021-40088 | Missing Authorization vulnerability in Primekey Ejbca An issue was discovered in PrimeKey EJBCA before 7.6.0. | 5.4 |
| 2021-08-25 | CVE-2021-40089 | Unspecified vulnerability in Primekey Ejbca An issue was discovered in PrimeKey EJBCA before 7.6.0. | 2.3 |
| 2020-11-19 | CVE-2020-28942 | Improper Certificate Validation vulnerability in Primekey Ejbca An issue exists in PrimeKey EJBCA before 7.4.3 when enrolling with EST while proxied through an RA over the Peers protocol. | 4.3 |
| 2020-09-11 | CVE-2020-25276 | Improper Certificate Validation vulnerability in Primekey Ejbca An issue was discovered in PrimeKey EJBCA 6.x and 7.x before 7.4.1. | 7.3 |
| 2020-04-08 | CVE-2020-11631 | Unspecified vulnerability in Primekey Ejbca An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. | 6.5 |
| 2020-04-08 | CVE-2020-11630 | Deserialization of Untrusted Data vulnerability in Primekey Ejbca An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. | 9.8 |