VYPR
High severityNVD Advisory· Published Jul 25, 2023· Updated Mar 5, 2025

Certifi's removal of e-Tugra root certificate

CVE-2023-37920

Description

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certificates were subject to an investigation prompted by reporting of security issues in their systems. Certifi 2023.07.22 removes root certificates from "e-Tugra" from the root store.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
certifiPyPI
>= 2015.4.28, < 2023.7.222023.7.22

Affected products

65

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.