Botan · Botan · CVE-2018-9127
**Name of the Vulnerable Software and Affected Versions**
Botan versions 2.2.0 through 2.4.0
**Description**
The issue improperly handles wildcard certificates, potentially allowing certain certificates to be accepted as valid for hostnames when they should not match according to RFC 6125 rules. This affects certificates issued to the same domain as the host, requiring an attacker to already have a wildcard certificate matching other hosts in the same domain to impersonate a host.
**Recommendations**
For versions 2.2.0 through 2.4.0, update to version 2.5.0 to resolve the issue.