Vulnerabilities > Primekey > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-01-01 CVE-2022-40711 Cross-site Scripting vulnerability in Primekey Ejbca 7.9.0.2
PrimeKey EJBCA 7.9.0.2 Community allows stored XSS in the End Entity section.
network
low complexity
primekey CWE-79
4.8
2021-08-25 CVE-2021-40087 Cleartext Storage of Sensitive Information vulnerability in Primekey Ejbca
An issue was discovered in PrimeKey EJBCA before 7.6.0.
network
low complexity
primekey CWE-312
4.0
2021-08-25 CVE-2021-40088 Missing Authorization vulnerability in Primekey Ejbca
An issue was discovered in PrimeKey EJBCA before 7.6.0.
network
primekey CWE-862
4.9
2020-11-19 CVE-2020-28942 Improper Certificate Validation vulnerability in Primekey Ejbca
An issue exists in PrimeKey EJBCA before 7.4.3 when enrolling with EST while proxied through an RA over the Peers protocol.
network
low complexity
primekey CWE-295
4.0
2020-09-11 CVE-2020-25276 Improper Certificate Validation vulnerability in Primekey Ejbca 7.0.0/7.3.1.2
An issue was discovered in PrimeKey EJBCA 6.x and 7.x before 7.4.1.
network
primekey CWE-295
6.8
2020-04-08 CVE-2020-11631 Improper Input Validation vulnerability in Primekey Ejbca 7.0.0
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2.
network
low complexity
primekey CWE-20
4.0
2020-04-08 CVE-2020-11629 Unrestricted Upload of File with Dangerous Type vulnerability in Primekey Ejbca 7.0.0
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2.
network
low complexity
primekey CWE-434
6.5
2020-04-08 CVE-2020-11628 Incorrect Authorization vulnerability in Primekey Ejbca 7.0.0
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2.
network
low complexity
primekey CWE-863
5.0
2020-04-08 CVE-2020-11627 Cross-Site Request Forgery (CSRF) vulnerability in Primekey Ejbca 7.0.0
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2.
network
primekey CWE-352
6.8
2020-04-08 CVE-2020-11626 Cross-site Scripting vulnerability in Primekey Ejbca 7.0.0
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2.
network
primekey CWE-79
4.3