VYPR
Unrated severityNVD Advisory· Published Nov 17, 2010· Updated Jun 16, 2026

CVE-2010-3868

CVE-2010-3868

Description

Red Hat Certificate System (RHCS) 7.3 and 8 and Dogtag Certificate System do not require authentication for requests to decrypt SCEP one-time PINs, which allows remote attackers to obtain PINs by sniffing the network for SCEP requests and then sending decryption requests to the Certificate Authority component.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.