VariantIncomplete
CWE-599Missing Validation of OpenSSL Certificate
Category: other
Description
The product uses OpenSSL and trusts or uses a certificate without using the SSL_get_verify_result() function to ensure that the certificate satisfies all necessary security requirements.
Common consequences· 3
- Confidentiality — Read Application DataThe data read may not be properly secured - it might be viewed by an attacker.
- Access Control — Bypass Protection Mechanism, Gain Privileges or Assume IdentityTrust afforded to the system in question may allow for spoofing or redirection attacks.
- Access Control — Gain Privileges or Assume IdentityIf the certificate is not checked, it may be possible for a redirection or spoofing attack to allow a malicious host with a valid certificate to provide data under the guise of a trusted host. While the attacker in question may have a valid certificate, it may simply be a valid certificate for a different site. This could allow an attacker to use an invalid certificate to claim to be a trusted host, use expired certificates, or conduct other attacks that could be detected if the certificate is properly validated. In order to ensure data integrity, we must check that the certificate is valid, and that it pertains to the site we wish to access.
Potential mitigations· 2
- [Architecture and Design]Ensure that proper authentication is included in the system design.
- [Implementation]Understand and properly implement all checks necessary to ensure the identity of entities involved in encrypted communications.
References
(incoming)2
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Vulnerability | CVE-2025-12553cve-2025-12553 | 0% | live |
| Vulnerability | CVE-2026-25060cve-2026-25060 | 0% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.