Home

Description

An attacker can bypass authorization checks and force a Step CA ACME or SCEP provisioner to create certificates without completing certain protocol authorization checks.

PUBLISHED Reserved 2025-07-28 | Published 2025-12-17 | Updated 2025-12-17 | Assigner talos




CRITICAL: 10.0CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N

Problem types

CWE-287: Improper Authentication

Product status

0.28.4
affected

v0.28.3
affected

Credits

Stephen Kubik of the Cisco Advanced Security Initiatives Group (ASIG)

References

www.talosintelligence.com/...ability_reports/TALOS-2025-2242

talosintelligence.com/vulnerability_reports/TALOS-2025-2242

github.com/...icates/security/advisories/GHSA-h8cp-697h-8c8p

cve.org (CVE-2025-44005)

nvd.nist.gov (CVE-2025-44005)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.