The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4847 advisory.

    The Public Key Infrastructure (PKI) Core contains fundamental packages required by Red Hat Certificate     System.

    Security Fix(es):

    * jquery: Cross-site scripting via cross-domain ajax requests (CVE-2015-9251)

    * bootstrap: XSS in the data-target attribute (CVE-2016-10735)

    * bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute (CVE-2018-14040)

    * bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip (CVE-2018-14042)

    * bootstrap: XSS in the tooltip or popover data-template attribute (CVE-2019-8331)

    * jquery: Prototype pollution in object's prototype leading to denial of service, remote code execution,     or property injection (CVE-2019-11358)

    * jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method (CVE-2020-11022)

    * jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code     execution (CVE-2020-11023)

    * pki: Dogtag's python client does not validate certificates (CVE-2020-15720)

    * pki-core: Reflected XSS in 'path length' constraint field in CA's Agent page (CVE-2019-10146)

    * pki-core/pki-kra: Reflected XSS in recoveryID search field at KRA's DRM agent page in authorize recovery     tab (CVE-2019-10179)

    * pki-core: Reflected XSS in getcookies?url= endpoint in CA (CVE-2019-10221)

    * pki-core: KRA vulnerable to reflected XSS via the getPk12 page (CVE-2020-1721)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

    Additional Changes:

    For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes     linked from the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

RHEL 8 : pki-core:10.6 and pki-deps:10.6 (RHSA-2020:4847)

critical Nessus Plugin ID 142409

Version 1.17

Version 1.16

Version 1.15

Version 1.14

Version 1.13

Version 1.12

Version 1.11

Version 1.17 Nov 7, 2024, 5:39 AM CVSS metrics ("Cvssv4 score" set to 0.0) CVSSv2 severity (based on None, severity decreased from "High" to "Low") Detection (updated detection logic) Plugin metadata Plugin Feed: 202411070539
Version 1.16 Apr 28, 2024, 2:25 PM Detection (updated detection logic) Plugin metadata Plugin Feed: 202404281425
Version 1.15 May 25, 2023, 11:07 PM CEA reference Plugin Feed: 202305252307
Version 1.14 May 25, 2023, 7:14 PM Exploit attributes ("Exploited by malware" set to "True") CISA reference CVSS metrics ("CVSSv2 score" changed from 4.3 to 7.5. "CVSSv3 score" changed from 6.8 to 9.8. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N" to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N" to "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P") CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:H/RL:O/RC:C") CVSSv2 score source (changed from "CVE-2020-1721" to "CVE-2022-25762") CVSSv2 severity (based on CVE-2022-25762, severity increased from "Medium" to "High") CVSSv3 severity (based on CVE-2020-1938, severity increased from "Medium" to "High") Plugin Feed: 202305251914
Version 1.13 May 25, 2023, 5:09 PM CISA reference CVSS metrics ("CVSSv3 score" changed from 6.8 to 9.8) CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C") CVSSv2 score source (changed from "CVE-2020-1721" to "CVE-2022-25762") CVSSv2 severity (based on CVE-2022-25762, severity increased from "Medium" to "High") CVSSv3 severity (based on CVE-2020-1938, severity increased from "Medium" to "High") Exploit attributes ("Exploited by malware" set to "True") Logic Changes (Added support for ppc64le architecture) Plugin Feed: 202305251709
Version 1.12 Jan 23, 2023, 7:12 PM Logic Changes (Added support for repository relative URLs) Plugin Feed: 202301231912
Version 1.11 Dec 6, 2022, 6:53 AM Reference Plugin Feed: 202212060653