Validation methods are occasionally found to contain security flaws. When this happens,Mozilla expects CA operators to evaluate their practices and respond appropriately to mitigate the risk.Mozilla MAY require CAs to make disclosures or modifications, up to and includingimmediately discontinuing use of a method.