2015-01-15 15:00:00
mitre
PUBLISHED
Apache CloudStack before 4.3.2 and 4.4.x before 4.4.2 allows remote attackers to obtain private keys via a listSslCerts API call.