CVE-2021-3698 - A flaw was found in Cockpit in versions prior to 260 in the way it handles the certificate verificat

CVE-2021-3698

Summary

A flaw was found in Cockpit in versions prior to 260 in the way it handles the certificate verification performed by the System Security Services Daemon (SSSD). This flaw allows client certificates to authenticate successfully, regardless of the Certificate Revocation List (CRL) configuration or the certificate status. The highest threat from this vulnerability is to confidentiality.

References

Vulnerable Configurations

cpe:2.3:a:cockpit-project:cockpit:0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.2:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.2:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.3:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.3:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.4:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.4:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.5:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.5:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.6:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.6:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.7:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.7:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.8:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.8:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.9:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.9:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.10:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.10:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.11:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.11:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.12:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.12:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.13:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.13:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.14:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.14:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.15:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.15:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.16:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.16:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.17:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.17:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.18:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.18:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.19:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.19:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.20:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.20:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.21:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.21:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.22:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.22:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.23:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.23:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.24:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.24:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.25:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.25:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.26:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.26:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.27:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.27:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.28:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.28:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.29:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.29:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.30:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.30:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.31:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.31:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.32:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.32:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.33:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.33:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.34:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.34:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.35:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.35:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.36:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.36:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.37:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.37:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.38:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.38:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.39:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.39:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.40:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.40:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.41:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.41:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.42:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.42:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.43:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.43:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.44:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.44:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.45:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.45:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.46:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.46:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.47:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.47:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.48:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.48:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.49:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.49:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.50:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.50:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.51:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.51:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.52:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.52:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.53:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.53:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.54:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.54:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.55:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.55:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.56:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.56:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.57:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.57:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.58:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.58:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.59:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.59:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.60:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.60:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.61:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.61:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.62:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.62:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.63:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.63:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.64:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.64:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.65:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.65:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.66:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.66:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.67:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.67:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.68:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.68:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.69:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.69:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.70:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.70:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.71:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.71:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.72:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.72:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.73:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.73:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.74:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.74:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.75:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.75:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.76:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.76:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.77:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.77:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.78:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.78:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.79:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.79:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.80:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.80:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.81:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.81:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.82:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.82:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.83:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.83:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.84:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.84:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.85:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.85:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.86:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.86:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.87:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.87:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.88:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.88:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.89:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.89:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.90:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.90:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.91:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.91:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.92:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.92:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.93:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.93:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.94:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.94:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.95:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.95:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.96:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.96:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.97:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.97:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.98:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.98:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.99:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.99:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.100:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.100:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.101:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.101:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.102:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.102:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.103:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.103:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.104:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.104:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.105:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.105:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.106:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.106:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.107:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.107:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.108:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.108:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.109:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.109:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.110:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.110:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.111:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.111:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.112:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.112:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.113:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.113:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.114:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.114:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.115:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.115:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.116:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.116:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.117:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:0.117:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:118:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:118:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:119:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:119:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:120:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:120:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:121:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:121:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:122:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:122:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:123:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:123:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:124:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:124:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:125:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:125:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:126:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:126:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:127:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:127:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:128:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:128:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:129:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:129:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:130:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:130:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:131:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:131:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:132:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:132:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:133:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:133:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:134:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:134:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:135:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:135:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:136:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:136:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:137:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:137:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:138:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:138:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:139:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:139:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:140:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:140:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:141:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:141:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:142:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:142:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:143:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:143:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:144:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:144:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:145:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:145:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:146:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:146:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:147:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:147:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:148:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:148:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:149:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:149:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:150:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:150:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:151:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:151:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:152:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:152:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:153:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:153:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:154:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:154:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:155:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:155:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:156:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:156:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:157:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:157:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:158:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:158:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:159:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:159:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:160:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:160:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:161:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:161:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:162:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:162:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:163:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:163:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:164:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:164:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:165:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:165:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:166:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:166:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:167:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:167:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:168:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:168:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:169:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:169:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:170:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:170:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:171:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:171:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:172:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:172:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:173:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:173:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:173.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:173.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:173.2:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:173.2:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:174:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:174:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:175:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:175:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:176:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:176:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:177:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:177:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:178:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:178:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:179:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:179:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:180:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:180:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:181:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:181:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:182:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:182:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:183:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:183:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:184:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:184:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:184.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:184.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:185:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:185:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:186:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:186:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:187:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:187:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:188:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:188:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:189:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:189:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:190:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:190:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:234:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:234:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:235:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:235:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:236:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:236:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:237:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:237:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:238:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:238:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:238.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:238.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:238.2:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:238.2:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:239:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:239:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:240:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:240:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:241:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:241:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:242:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:242:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:243:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:243:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:244:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:244:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:244.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:244.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:245:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:245:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:246:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:246:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:247:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:247:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:248:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:248:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:249:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:249:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:250:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:250:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:251:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:251:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:251.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:251.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:251.2:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:251.2:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:251.3:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:251.3:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:252:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:252:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:253:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:253:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:254:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:254:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:255:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:255:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:255.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:255.1:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:256:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:256:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:257:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:257:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:258:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:258:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:259:*:*:*:*:*:*:*
cpe:2.3:a:cockpit-project:cockpit:259:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 21-11-2024 - 06:22)
Impact:
Exploitability:

CWE

CWE-295

CAPEC

Creating a Rogue Certification Authority Certificate
An adversary exploits a weakness in the MD5 hash algorithm (weak collision resistance) to generate a certificate signing request (CSR) that contains collision blocks in the "to be signed" part. The adversary specially crafts two different, but valid X.509 certificates that when hashed with the MD5 algorithm would yield the same value. The adversary then sends the CSR for one of the certificates to the Certification Authority which uses the MD5 hashing algorithm. That request is completely valid and the Certificate Authority issues an X.509 certificate to the adversary which is signed with its private key. An adversary then takes that signed blob and inserts it into another X.509 certificate that the attacker generated. Due to the MD5 collision, both certificates, though different, hash to the same value and so the signed blob works just as well in the second certificate. The net effect is that the adversary's second X.509 certificate, which the Certification Authority has never seen, is now signed and validated by that Certification Authority. To make the attack more interesting, the second certificate could be not just a regular certificate, but rather itself a signing certificate. Thus the adversary is able to start their own Certification Authority that is anchored in its root of trust in the legitimate Certification Authority that has signed the attackers' first X.509 certificate. If the original Certificate Authority was accepted by default by browsers, so will now the Certificate Authority set up by the adversary and of course any certificates that it signs. So the adversary is now able to generate any SSL certificates to impersonate any web server, and the user's browser will not issue any warning to the victim. This can be used to compromise HTTPS communications and other types of systems where PKI and X.509 certificates may be used (e.g., VPN, IPSec).

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:N/A:N

Last major update

21-11-2024 - 06:22

Published

10-03-2022 - 17:42

Last modified

21-11-2024 - 06:22