ID10 | ESC1

A certificate template is vulnerable to ESC1 when it permits specifying a subjectAltName (SAN) when requesting a certificate.

References:

Table of availables actions, states, and targets

Vulnerability ID

Trigger available

Default state

Default target

10 | ESC1

No

Absent

dc01

Launch

Enable

# Current directory: ansible
ansible-playbook -i inventory.yml playbooks/vulnerabilities/10.yml --extra-vars "action=enable"

Disable

# Current directory: ansible
ansible-playbook -i inventory.yml playbooks/vulnerabilities/10.yml --extra-vars "action=disable"

Implementation

Enable

Create a template vulnerable to ESC1.

Reference:

Disable

Remove the vulnerable template.

Reference: