Low severity2.3NVD Advisory· Published Aug 25, 2021· Updated Jun 17, 2026
CVE-2021-40089
CVE-2021-40089
Description
An issue was discovered in PrimeKey EJBCA before 7.6.0. The General Purpose Custom Publisher, which is normally run to invoke a local script upon a publishing operation, was still able to run if the System Configuration setting Enable External Script Access was disabled. With this setting disabled it's not possible to create new such publishers, but existing publishers would continue to run.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- PrimeKey/EJBCAdescription
Patches
Vulnerability mechanics
References
1- support.primekey.com/news/posts/54nvdVendor Advisory
News mentions
0No linked articles in our index yet.