Security Advisory

CVE-2021-40087

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-25 01:24:59

Last updated 2024-08-04 02:27:31

Assigner mitre

State PUBLISHED

Description

An issue was discovered in PrimeKey EJBCA before 7.6.0. When audit logging changes to the alias configurations of various protocols that use an enrollment secret, any modifications to the secret were logged in cleartext in the audit log (that can only be viewed by an administrator). This affects use of any of the following protocols: SCEP, CMP, or EST.

← Browse all CVEs View on cve.org ↗