SSL.com Scrambles to Patch Certificate Issuance Vulnerability  - SecurityWeek

A domain control validation (DCV) vulnerability in SSL.com allowed a researcher to obtain a fraudulent certificate for aliyun.com. SSL.com revoked the certificate and ten others misissued for legitimate domains, including *.medinet.ca and help.gurusoft.com.sg. The issue, discovered in April 2025, did not impact Entrust systems.

*****
Written on