ipa-kra-install in FreeIPA before 4.2.2 puts the CA agent certificate and private key in /etc/httpd/alias/kra-agent.pem, which is world readable.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2017-09-21T14:00:00

Updated: 2024-08-06T06:41:09.280Z

Reserved: 2015-07-01T00:00:00

Link: CVE-2015-5284

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-09-21T14:29:00.337

Modified: 2024-11-21T02:32:42.710

Link: CVE-2015-5284

cve-icon Redhat

Severity : Important

Publid Date: 2015-10-08T00:00:00Z

Links: CVE-2015-5284 - Bugzilla