EJBCA compliance issue: Potential CA/B Forum compliance issue for customers using EJBCA ACME and MPIC functionality
Issue summaryAn issue related to the EJBCA MPIC implementation has been ...
SignServer CVE-2025-47222: Class name enumeration
CVE-2025-47222 Class name enumeration Issue summary Setting any chosen c...
SignServer CVE-2025-47221: Arbitrary file write
CVE-2025-47221 Arbitrary file write Issue summary The following properti...
SignServer CVE-2025-47220: Local file enumeration
CVE-2025-47220 Local file enumeration Issue summary The property VISIBLE...
SignServer security advisory: Container vulnerability CVE-2025-26787 fixed in version 7.2
Issue summaryAt startup of the container, the SignServer Admin CLI comma...
EJBCA security advisory: EJBCA standalone CMP CLI client
Issue summary The standalone CMP CLI client bundled with EJBCA is not co...
Security Advisory: EJBCA - Partial denial of service attack on certificate distribution servlet /ejbca/ra/cert
Issue summary The certificate distribution servlet /ejbca/ra/cert is pro...
Security Advisory: SignServer - Cross-site scripting issue in Admin Web
March 6, 2022 Dear customers and partners, PrimeKey has released an upda...