← NAVER Cloud Trust Services cases
Bugzilla #1845269 Certificate Misissuance

NAVER Cloud Trust Services: commonName not in SAN

RESOLVED FIXED NAVER Cloud Trust Services
AI Summary

NAVER Cloud Trust Services identified a misissuance of an OV SSL certificate that did not include the commonName in the Subject Alternative Name (SAN) field. The issue was discovered during an internal audit on July 25, 2023, leading to the immediate revocation of the certificate. The root cause was traced to a lack of validation in the wildcard certificate issuance logic. NAVER has since implemented measures to prevent recurrence, including a patch to their internal system and additional pre-linting checks.

Model: gpt-4o-mini Generated: 2026-06-13 20:55 UTC Confidence: 1.00
Chronology
  1. Certificate issued with commonName not in SAN
  2. Certificate revoked after internal audit
  3. Pre-linting based on Zlint added to CA Application
Participants
Han Yong, Park Ben Wilson
External References
Original Bugzilla Case crt.sh
Similar Local Cases
#1843268 RESOLVED Certificate Misissuance Opened 2023-07-13 · Closed 2024-05-09 · 75% similar
NAVER Cloud Trust Services: OV certificate issued with OU field
AI Summary CA Owner
#1785865 RESOLVED Certificate Misissuance Opened 2022-08-18 · Closed 2024-05-09 · 63% similar
NAVER Cloud Trust Services: DV certificate issued with no subject alternative name extension
AI Summary CA Owner
#1866448 RESOLVED Certificate Misissuance Opened 2023-11-24 · Closed 2024-02-14 · 61% similar
NAVER Cloud Trust Services: DV Certificate issued with improperly validated
AI Summary CA Owner
#1908128 RESOLVED Certificate Misissuance Opened 2024-07-16 · Closed 2024-08-28 · 54% similar
NAVER Cloud Trust Services: Certificate issued with incorrect OCSP URI in AIA
AI Summary CA Owner
#1651026 RESOLVED Certificate Misissuance Opened 2020-07-07 · Closed 2023-02-22 · 53% similar
Izenpe: certificate issued to internal domain
AI Summary CA Owner
#1908130 RESOLVED Certificate Misissuance Opened 2024-07-16 · Closed 2024-08-28 · 53% similar
NAVER Cloud Trust Services: Incorrect keyUsage for ECC certificate
AI Summary CA Owner
#1766255 RESOLVED Certificate Misissuance Opened 2022-04-25 · Closed 2023-02-22 · 52% similar
SwissSign: Mis-Issuance of S/MIME certificates
AI Summary CA Owner
#1731586 RESOLVED Certificate Misissuance Opened 2021-09-20 · Closed 2023-02-22 · 51% similar
SwissSign: Certificate with key length 16258
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action