EJBCA compliance issue: Potential CA/B Forum compliance issue for customers using EJBCA ACME and MPIC functionality
Issue summaryAn issue related to the EJBCA MPIC implementation has been ...
SignServer CVE-2025-47222: Class name enumeration
CVE-2025-47222
Class name enumeration
Issue summary
Setting any chosen c...
SignServer CVE-2025-47221: Arbitrary file write
CVE-2025-47221
Arbitrary file write
Issue summary
The following properti...
SignServer CVE-2025-47220: Local file enumeration
CVE-2025-47220
Local file enumeration
Issue summary
The property VISIBLE...
SignServer security advisory: Container vulnerability CVE-2025-26787 fixed in version 7.2
Issue summaryAt startup of the container, the SignServer Admin CLI comma...
EJBCA security advisory: EJBCA standalone CMP CLI client
Issue summary
The standalone CMP CLI client bundled with EJBCA is not co...
Security Advisory: EJBCA - Partial denial of service attack on certificate distribution servlet /ejbca/ra/cert
Issue summary
The certificate distribution servlet /ejbca/ra/cert is pro...
Security Advisory: SignServer - Cross-site scripting issue in Admin Web
March 6, 2022
Dear customers and partners,
PrimeKey has released an upda...