What is RHSA-2021:0851?

RHSA-2021:0851 is a security advisory published by Red Hat Product Security with High severity. Red Hat Security Advisory: pki-core security and bug fix update

What is the CVSS v3 score of RHSA-2021:0851?

RHSA-2021:0851 has a CVSS v3 base score of 8.1, published by Red Hat Product Security.

RHSA-2021:0851HighCVSS 8.1

Red Hat Security Advisory: pki-core security and bug fix update

Vendor

Red Hat Product Security

Published

March 16, 2021

Last Modified

June 13, 2026

🔗 CVE IDs covered (7)

CVE-2019-10146 →CVE-2019-10179 →CVE-2019-10221 →CVE-2020-1721 →CVE-2020-11023 →CVE-2020-25715 →CVE-2021-20179 →

📋 Description

CVE-2019-10146 — pki-core: Reflected XSS in 'path length' constraint field in CA's Agent page CVE-2019-10179 — pki-core/pki-kra: Reflected XSS in recoveryID search field at KRA's DRM agent page in authorize recovery tab CVE-2019-10221 — pki-core: Reflected XSS in getcookies?url= endpoint in CA CVE-2020-1721 — pki-core: KRA vulnerable to reflected XSS via the getPk12 page CVE-2020-11023 — jquery: Untrusted code execution via tag in HTML passed to DOM manipulation methods CVE-2020-25715 — pki-core: XSS in the certificate search results CVE-2021-20179 — pki-core: Unprivileged users can renew any certificate

🔗 References (10)

selfhttps://access.redhat.com/errata/RHSA-2021:0851
externalhttps://access.redhat.com/security/updates/classification/#important
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1695901
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1710171
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1732565
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1777579
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1883639
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1891016
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1914379
selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0851.json