Unrated severityNVD Advisory· Published Jan 7, 2009· Updated Jun 16, 2026
CVE-2009-0049
CVE-2009-0049
Description
Belgian eID middleware (eidlib) 2.6.0 and earlier does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=2.6.0
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.