CWE-298 - Improper Validation of Certificate Expiration

  • Abstraction:Variant
  • Structure:Simple
  • Status:Draft
  • Release Date:2006-07-19
  • Latest Modification Date:2026-04-30

Weakness Name

Improper Validation of Certificate Expiration

Description

A certificate expiration is not validated or is incorrectly validated.

Common Consequences

Scope: Integrity, Other

Impact: Other

Notes: The data read from the system vouched for by the expired certificate may be flawed due to malicious spoofing.

Scope: Authentication, Other

Impact: Other

Notes: Trust may be assigned to certificates that have been abandoned due to age.

Related Weaknesses

CWE-295Improper Certificate Validation

CWE-672Operation on a Resource after Expiration or Release