Back to search
CVE-2015-5284
Published: Sep 21, 2017
Modified: Aug 6, 2024
PUBLISHED
Description
ipa-kra-install in FreeIPA before 4.2.2 puts the CA agent certificate and private key in /etc/httpd/alias/kra-agent.pem, which is world readable.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[Freeipa-interest] 20151008 Announcing FreeIPA 4.2.2
mailing-list
x_refsource_MLIST
https://bugzilla.redhat.com/show_bug.cgi?id=1264790
x_refsource_CONFIRM
https://bugzilla.redhat.com/attachment.cgi?id=1075511
x_refsource_CONFIRM
https://pagure.io/freeipa/issue/5347
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now