Описание
SSL.com before 2025-04-19, when domain validation method 3.2.2.4.14 is used, processes certificate requests such that a trusted TLS certificate may be issued for the domain name of a requester's email address, even when the requester does not otherwise establish administrative control of that domain.
EPSS
Процентиль: 7%
0.00026
Низкий
6.4 Medium
CVSS3
Дефекты
CWE-348
Связанные уязвимости
CVSS3: 6.4
github
10 месяцев назад
SSL.com before 2025-04-19, when domain validation method 3.2.2.4.14 is used, processes certificate requests such that a trusted TLS certificate may be issued for the domain name of a requester's email address, even when the requester does not otherwise establish administrative control of that domain.
EPSS
Процентиль: 7%
0.00026
Низкий
6.4 Medium
CVSS3
Дефекты
CWE-348