CWE-593βAuthentication Bypass: OpenSSL CTX Object Modified after SSL Objects are Created
PUBLISHEDweakness record
released 2006-12-15 Β· last modified 2025-12-11
Metadata
Weakness Name
Authentication Bypass: OpenSSL CTX Object Modified after SSL Objects are Created
Description
The product modifies the SSL context after connection creation has begun.
If the program modifies the SSL_CTX object after creating SSL objects from it, there is the possibility that older SSL objects created from the original context could all be affected by that change.