EPSS
Percentile
94.7%
OpenSSL is vulnerable to chain certificate forgery. A malicious user can bypass the certificate verification process, enabling the user to use a valid leaf certificate and “issue” an invalid certificate.
bugzilla.redhat.com/show_bug.cgi?id=1238619
git.openssl.org/?p=openssl.git;a=commit;h=9a0db453ba017ebcaccbee933ee6511a9ae4d1c8
www.openssl.org/news/secadv/20150709.txt