CVE-2026-44900 | oviva-ag epa4all-client up to 1.2.0 SignedPublicKeysTrustValidatorImpl.isTrusted certificate validation (GHSA-g8r3-5hwf-qp96)

A vulnerability was found in oviva-ag epa4all-client up to 1.2.0 and classified as problematic. The affected element is the function SignedPublicKeysTrustValidatorImpl.isTrusted. Executing a manipulation can lead to improper certificate validation.

This vulnerability is handled as CVE-2026-44900. The attack can be executed remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More