Unrated severityNVD Advisory· Published Nov 17, 2010· Updated Apr 29, 2026

CVE-2010-3868

Description

Red Hat Certificate System (RHCS) 7.3 and 8 and Dogtag Certificate System do not require authentication for requests to decrypt SCEP one-time PINs, which allows remote attackers to obtain PINs by sniffing the network for SCEP requests and then sending decryption requests to the Certificate Authority component.

Affected products

Red Hat/Certificate System2 versions
cpe:2.3:a:redhat:certificate_system:7.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:redhat:certificate_system:7.3:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:certificate_system:8:*:*:*:*:*:*:*
Red Hat/Dogtag Certificate System
cpe:2.3:a:redhat:dogtag_certificate_system:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

fedorahosted.org/pki/changeset/1261nvdPatch
secunia.com/advisories/42181nvdVendor Advisory
securitytracker.com/idnvd
www.osvdb.org/69149nvd
bugzilla.redhat.com/show_bug.cginvd
rhn.redhat.com/errata/RHSA-2010-0837.htmlnvd
rhn.redhat.com/errata/RHSA-2010-0838.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000