CVE-2021-40088

Name of the Vulnerable Software and Affected Versions PrimeKey EJBCA versions prior to 7.6.0

Description An issue was discovered where the CMP RA Mode in PrimeKey EJBCA can be exploited by using a known client certificate to authenticate enrolling clients. The same RA client certificate is used for revocation requests. However, while enrollment enforces multi-tenancy constraints by verifying that the client certificate has access to the CA and Profiles being enrolled against, this check was not performed when authenticating revocation operations. This allows a known tenant to revoke a certificate belonging to another tenant.

Recommendations For PrimeKey EJBCA versions prior to 7.6.0, update to version 7.6.0 or later to resolve the issue.