| Bug | bullseye | sid | Description |
|---|
| CVE-2023-4727 | vulnerable (no DSA) | vulnerable | A flaw was found in dogtag-pki and pki-core. The token authentication ... |
| CVE-2022-2414 | vulnerable (no DSA) | fixed | Access to external entities when parsing XML documents can lead to XML ... |
| CVE-2022-2393 | vulnerable (no DSA) | vulnerable | A flaw was found in pki-core, which could allow a user to get a certif ... |
| CVE-2021-3551 | vulnerable (no DSA) | fixed | A flaw was found in the PKI-server, where the spkispawn command, when ... |
| CVE-2020-25715 | vulnerable (no DSA) | fixed | A flaw was found in pki-core 10.9.0. A specially crafted POST request ... |
| CVE-2020-1696 | vulnerable (no DSA) | vulnerable | A flaw was found in the all pki-core 10.x.x versions, where Token Proc ... |
| CVE-2019-10180 | vulnerable (no DSA) | vulnerable | A vulnerability was found in all pki-core 10.x.x version, where the To ... |
| CVE-2019-10178 | vulnerable (no DSA) | vulnerable | It was found that the Token Processing Service (TPS) did not properly ... |
| Bug | Description |
|---|
| CVE-2021-20179 | A flaw was found in pki-core. An attacker who has successfully comprom ... |
| CVE-2020-15720 | In Dogtag PKI through 10.8.3, the pki.client.PKIConnection class did n ... |
| CVE-2020-1721 | A flaw was found in the Key Recovery Authority (KRA) Agent Service in ... |
| CVE-2019-10221 | A Reflected Cross Site Scripting vulnerability was found in all pki-co ... |
| CVE-2019-10179 | A vulnerability was found in all pki-core 10.x.x versions, where the K ... |
| CVE-2019-10146 | A Reflected Cross Site Scripting flaw was found in all pki-core 10.x.x ... |
| CVE-2018-1080 | Dogtag PKI, through version 10.6.1, has a vulnerability in AAclAuthz.j ... |
| CVE-2017-7537 | It was found that a mock CMC authentication plugin with a hardcoded se ... |