BSV Ruby SDK is the Ruby SDK for the BSV blockchain. From 0.3.1 to before 0.8.2, BSV::Wallet::WalletClient#acquirecertificate persists certificate records to storage without verifying the certifier's signature over the certificate contents. In acquisitionprotocol: 'direct', the caller supplies all certificate fields (including signature:) and the record is written to storage verbatim. In acquisitionprotocol: 'issuance', the client POSTs to a certifier URL and writes whatever signature the response body contains, also without verification. An attacker who can reach either API (or who controls a certifier endpoint targeted by the issuance path) can forge identity certificates that subsequently appear authentic to listcertificates and prove_certificate.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/40xxx/CVE-2026-40070.json",
"cna_assigner": "GitHub_M",
"cwe_ids": [
"CWE-347"
]
}{
"source": [
"CPE_RANGE",
"REFERENCES"
],
"cpe": [
"cpe:2.3:a:sgbett:bsv-wallet:*:*:*:*:*:ruby:*:*",
"cpe:2.3:a:sgbett:bsv_ruby_sdk:*:*:*:*:*:ruby:*:*"
],
"extracted_events": [
{
"introduced": "0.1.2"
},
{
"fixed": "0.3.4"
},
{
"introduced": "0.3.1"
},
{
"fixed": "0.8.2"
}
]
}