Unrated severityNVD Advisory· Published Aug 29, 2007· Updated Jun 16, 2026
CVE-2007-4594
CVE-2007-4594
Description
Entrust Entelligence Security Provider (ESP) 8 does not properly validate certificates in certain circumstances involving (1) a chain that omits the root Certification Authority (CA) certificate, or an application that specifies disregarding (2) unknown revocation statuses during path validation or (3) certain errors in the certification path, which might allow context-dependent attackers to spoof certificate authentication. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected products
2cpe:2.3:a:entrust:entelligence_security_provider:8:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:entrust:entelligence_security_provider:8:*:*:*:*:*:*:*
- (no CPE)range: 8
Patches
Vulnerability mechanics
References
3- secunia.com/advisories/26630nvdPatchVendor Advisory
- www.securityfocus.com/bid/25471nvdPatch
- exchange.xforce.ibmcloud.com/vulnerabilities/36331nvd
News mentions
0No linked articles in our index yet.