← Autoridad de Certificacion Firmaprofesional cases
Bugzilla #2009941 Certificate Misissuance

Firmaprofesional: Misissuance of TLS Subordinate CA "AC Firmaprofesional - Secure Web 2024"

RESOLVED FIXED Autoridad de Certificacion Firmaprofesional
AI Summary

Firmaprofesional identified a misissuance involving the TLS Subordinate CA certificate "AC Firmaprofesional - Secure Web 2024", which included a prohibited `organizationalUnitName` attribute. This misissuance was reported by an external party and confirmed by Firmaprofesional during their investigation. The incident led to the revocation of the misissued certificate and 1138 associated Subscriber certificates. Firmaprofesional has since implemented several remediation actions, including updating certificate profiles to prohibit disallowed attributes and establishing a compliance linting process to prevent future occurrences.

Model: gpt-4o-mini Generated: 2026-06-13 21:36 UTC Confidence: 0.90
Chronology
  1. TLS Subordinate CA "Secure Web 2024" issued.
  2. External Certificate Problem Report received.
  3. Certificate issuance under the affected Subordinate CA stopped.
  4. Completion of revocation of 1137 TLS Subscriber certificates.
  5. Expected completion of revocation of the remaining TLS Subscriber certificate.
  6. Report closure summary provided.
Participants
ext-antoni.camon@logalty.com bugzilla@jesperkristensen.dk dean.f.reed@protonmail.com chrome-root-program@google.com mathew.hodson@gmail.com rdaurne77@gmail.com bsmith@cabbage.org.uk incident-reporting@ccadb.org
External References
Original Bugzilla Case crt.sh crt.sh bugzilla.mozilla.org
Similar Local Cases
#2032482 ASSIGNED Certificate Misissuance Opened 2026-04-16 Still Open · 67% similar
OATI: Misissuance detected by PKIMetal
AI Summary CA Owner
#1981680 RESOLVED Certificate Misissuance Opened 2025-08-07 · Closed 2025-09-26 · 56% similar
TunTrust: SSL OV mis-issuance against CP/CPS (Email attribute)
AI Summary CA Owner
#2014609 RESOLVED Certificate Misissuance Opened 2026-02-05 · Closed 2026-04-11 · 55% similar
IdenTrust: Cross-signed root certificate mis-issuance
AI Summary CA Owner
#2032468 ASSIGNED Certificate Misissuance Opened 2026-04-16 Still Open · 55% similar
VISA: Misissuance detected by PKIMetal
AI Summary CA Owner
#2032476 RESOLVED Certificate Misissuance Opened 2026-04-16 · Closed 2026-05-07 · 53% similar
Microsoft PKI Services: Misissuance detected by PKIMetal
AI Summary CA Owner
#2032478 ASSIGNED Certificate Misissuance Opened 2026-04-16 Still Open · 51% similar
Government of Korea: Misissuance detected by PKIMetal
AI Summary CA Owner
#2012157 RESOLVED Certificate Misissuance Opened 2026-01-23 · Closed 2026-03-08 · 51% similar
Actalis: Issuance of certificate using keys previously reported as compromised
AI Summary CA Owner
#1724520 RESOLVED Certificate Misissuance Opened 2021-08-06 · Closed 2023-02-22 · 50% similar
SSL.com: Incorrect Domain Validation for 1 TLS certificate with FQDN having "www." string within domain labels
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action