GoDaddy: Agreed-Upon Website Domain Validation Method Issue

GoDaddy identified a bug in their domain validation process where validation information from one sub-domain was incorrectly used to validate another sub-domain under the same primary domain. This issue was discovered on June 10, 2020, during system updates, leading to the revocation of 454 affected certificates issued between May 27 and June 10, 2020. The problem arose due to a coding oversight when a new variable was introduced without updating the necessary validation checks. GoDaddy has since implemented corrective measures to prevent future occurrences.

1. 2020-05-27 A developer introduced a bug while processing a change request.
2. 2020-06-10 Developers became aware of the bug and defined the population of affected certificates.
3. 2020-06-11 Completed revocations of the affected certificates.