Security Advisory

CVE-2025-61727

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-03 19:37:15

Last updated 2025-12-03 22:06:17

Assigner Go

State PUBLISHED

Description

An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. For example a constraint that excludes the subdomain test.example.com does not prevent a leaf certificate from claiming the SAN *.example.com.

← Browse all CVEs View on cve.org ↗