VYPR

pki-core

by Dogtag Pki

Source repositories

CVEs (1)

  • CVE-2023-4727HigJun 11, 2024
    risk 0.42cvss 7.5epss 0.01

    A flaw was found in dogtag-pki and pki-core. The token authentication scheme can be bypassed with a LDAP injection. By passing the query string parameter sessionID=*, an attacker can authenticate with an existing session saved in the LDAP directory server, which may lead to…