VulnerableCode Package Details - pkg:deb/debian/dogtag-pki@10.10.2-3?distro=bullseye

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-23u7-hejn-dkdk	pki: Dogtag's python client does not validate certificates	CVE-2020-15720
VCID-7v3m-meaa-sudu	pki-core/pki-kra: Reflected XSS in recoveryID search field at KRA's DRM agent page in authorize recovery tab	CVE-2019-10179
VCID-97tw-ymj8-6bbj	pki-core: Reflected XSS in getcookies?url= endpoint in CA	CVE-2019-10221
VCID-9dp1-dh3c-pqga	pki-core: Mishandled ACL configuration in AAclAuthz.java reverses rules that allow and deny access	CVE-2018-1080
VCID-pf14-dtsb-ebd2	pki-core: KRA vulnerable to reflected XSS via the getPk12 page	CVE-2020-1721
VCID-qwg3-thj2-tkav	pki-core: Reflected XSS in 'path length' constraint field in CA's Agent page	CVE-2019-10146
VCID-rxue-euzn-nffg	pki-core: mock CMC authentication plugin with hardcoded secret enabled by default	CVE-2017-7537
VCID-z6js-5t5m-fka9	pki-core: Unprivileged users can renew any certificate	CVE-2021-20179

Vulnerability

Summary

Aliases

VCID-23u7-hejn-dkdk

pki: Dogtag's python client does not validate certificates

CVE-2020-15720

VCID-7v3m-meaa-sudu

pki-core/pki-kra: Reflected XSS in recoveryID search field at KRA's DRM agent page in authorize recovery tab

CVE-2019-10179

VCID-97tw-ymj8-6bbj

pki-core: Reflected XSS in getcookies?url= endpoint in CA

CVE-2019-10221

VCID-9dp1-dh3c-pqga

pki-core: Mishandled ACL configuration in AAclAuthz.java reverses rules that allow and deny access

CVE-2018-1080

VCID-pf14-dtsb-ebd2

pki-core: KRA vulnerable to reflected XSS via the getPk12 page

CVE-2020-1721

VCID-qwg3-thj2-tkav

pki-core: Reflected XSS in 'path length' constraint field in CA's Agent page

CVE-2019-10146

VCID-rxue-euzn-nffg

pki-core: mock CMC authentication plugin with hardcoded secret enabled by default

CVE-2017-7537

VCID-z6js-5t5m-fka9

pki-core: Unprivileged users can renew any certificate

CVE-2021-20179

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T12:36:16.342438+00:00	Debian Importer	Fixing	VCID-rxue-euzn-nffg	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:17:47.458407+00:00	Debian Importer	Fixing	VCID-9dp1-dh3c-pqga	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:55:43.944342+00:00	Debian Importer	Fixing	VCID-qwg3-thj2-tkav	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:43:24.323287+00:00	Debian Importer	Fixing	VCID-z6js-5t5m-fka9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:37:08.416052+00:00	Debian Importer	Fixing	VCID-97tw-ymj8-6bbj	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:57:10.536711+00:00	Debian Importer	Fixing	VCID-23u7-hejn-dkdk	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:23:38.362312+00:00	Debian Importer	Fixing	VCID-pf14-dtsb-ebd2	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:44:47.408392+00:00	Debian Importer	Fixing	VCID-7v3m-meaa-sudu	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:38:03.973953+00:00	Debian Importer	Fixing	VCID-rxue-euzn-nffg	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:24:34.207893+00:00	Debian Importer	Fixing	VCID-9dp1-dh3c-pqga	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:08:30.036288+00:00	Debian Importer	Fixing	VCID-qwg3-thj2-tkav	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:59:28.369204+00:00	Debian Importer	Fixing	VCID-z6js-5t5m-fka9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:55:08.291025+00:00	Debian Importer	Fixing	VCID-97tw-ymj8-6bbj	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:25:41.062284+00:00	Debian Importer	Fixing	VCID-23u7-hejn-dkdk	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:00:16.666338+00:00	Debian Importer	Fixing	VCID-pf14-dtsb-ebd2	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:52:33.296579+00:00	Debian Importer	Fixing	VCID-7v3m-meaa-sudu	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-02T17:15:31.911659+00:00	Debian Importer	Fixing	VCID-rxue-euzn-nffg	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:14:23.493527+00:00	Debian Importer	Fixing	VCID-9dp1-dh3c-pqga	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:13:10.409394+00:00	Debian Importer	Fixing	VCID-qwg3-thj2-tkav	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:12:31.948285+00:00	Debian Importer	Fixing	VCID-z6js-5t5m-fka9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:12:09.971467+00:00	Debian Importer	Fixing	VCID-97tw-ymj8-6bbj	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:09:57.694292+00:00	Debian Importer	Fixing	VCID-23u7-hejn-dkdk	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:08:00.551921+00:00	Debian Importer	Fixing	VCID-pf14-dtsb-ebd2	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:02:34.797236+00:00	Debian Importer	Fixing	VCID-7v3m-meaa-sudu	https://security-tracker.debian.org/tracker/data/json	38.1.0