CVE-2022-34831
Keyfactor PrimeKey EJBCA (before 7.9.0) is vulnerable to an ACME-related issue where, after DNS identifiers are validated in the ACME challenge, a non‑compliant client can add extra dnsNames in the CSR at finalize, causing EJBCA to issue a certificate containing unvalidated identifiers. This bypa...