Skip to content
Threat Feed

Tag

BasicConstraints

1 brief RSS
high advisory

Node-Forge Certificate Chain Verification Bypass due to basicConstraints Violation

Node-forge's certificate chain verification fails to enforce RFC 5280 basicConstraints, allowing leaf certificates without basicConstraints and keyUsage extensions to act as Certificate Authorities, leading to potential certificate forgery and man-in-the-middle attacks.

certificate-forgery man-in-the-middle node-forge basicConstraints
2r 3t 1i