December 24, 2022 at 11:19PM

Impact of the Zero-Day (mentioned here:

Enrollment: An adversary can issue a certificate from the CA and later use that for hosting fake websites that all the clients of that firm under attack will automatically trust.

Revocation: An adversary can bring down any website /application by just getting the public certificate of that application.

Optionally, if you have to plan big, discover all applications, download the public certificate, and at once revoke all.