CVE-2025-44005

Name of the Vulnerable Software and Affected Versions Step CA (affected versions not specified)

Description A critical issue in Step CA allows for unauthenticated bypass, enabling the issuance of fraudulent certificates. This compromises trust in potentially millions of sites. The issue allows attackers to bypass security measures and generate unauthorized digital certificates, which could be used for malicious purposes such as phishing or man-in-the-middle attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.