CWE-295

Improper Certificate Validation

Parent: CWE-287 - Improper Authentication

The product does not validate, or incorrectly validates, a certificate.

1,335 vulnerabilities with CWE-295
CVE-2024-13956 MEDIUM
ASPECT <3.* - SSL Verification Bypass
CVSS 6.7
CVE-2024-45641 MEDIUM
IBM Security Qradar Edr < 3.12.17 - Improper Certificate Validation
CVSS 6.5
CVE-2024-47619 HIGH
syslog-ng <4.8.2 - Info Disclosure
CVSS 7.5
CVE-2024-42193 HIGH
Hcltech Bigfix Platform < 10.0.13 - Improper Certificate Validation
CVSS 8.1
CVE-2024-10445 MEDIUM
Synology Beestation OS - Improper Certificate Validation
CVSS 4.3
CVE-2024-10444 HIGH
Synology Diskstation Manager - Improper Certificate Validation
CVSS 7.5
CVE-2024-40590 MEDIUM
FortiPortal <7.4.0 - Info Disclosure
CVSS 4.8
CVE-2024-43107 HIGH
Gallagher MIP <4.0.32 - Unauthenticated RCE
CVSS 7.2
CVE-2024-41724 HIGH
Gallagher Command Centre <9.20.1043 - RCE
CVSS 8.7
CVE-2024-50394 HIGH
Qnap Helpdesk < 3.3.3 - Improper Certificate Validation
CVSS 8.8
CVE-2024-41334 HIGH
Draytek Vigor166 Firmware < 4.2.6 - Improper Certificate Validation
CVSS 8.8
CVE-2024-55581 HIGH
Adacore Ada Web Server - Improper Certificate Validation
CVSS 7.4
CVE-2024-50691 HIGH
Sungrowpower Isolarcloud - Improper Certificate Validation
CVSS 7.4
CVE-2024-49782 MEDIUM
IBM OpenPages with Watson <9.0 - SSRF
CVSS 6.8
CVE-2024-29171 MEDIUM
Dell Bsafe Ssl-j < 6.6 - Improper Certificate Validation
CVSS 5.9
CVE-2024-11621 HIGH
Drm <2024.3.9.0 - Man-in-the-middle
CVSS 8.8
CVE-2024-47258 HIGH
2N Access Commander <3.3 - Man In The Middle
CVSS 8.1
CVE-2024-23970 MEDIUM
Chargepoint Home Flex Nema 14-50 Plug... - Improper Certificate Validation
CVSS 6.5
CVE-2024-23928 MEDIUM
Pioneer Dmh-wt7600nex Firmware - Improper Certificate Validation
CVSS 6.5
CVE-2024-52330 HIGH
ECOVACS - SSL/TLS Info Disclosure
CVSS 7.4
CVE-2024-52329 HIGH
ECOVACS HOME - Info Disclosure
CVSS 7.4
CVE-2024-42186 LOW
BigFix Patch Download Plug-ins - Info Disclosure
CVSS 2.8
CVE-2024-48460 MEDIUM
NPM Tabby-ssh < 1.0.214 - Improper Certificate Validation
CVSS 4.3
CVE-2024-54849 MEDIUM
Cpplusworld Cp-vnr-3104 Firmware - Improper Certificate Validation
CVSS 5.9
CVE-2024-54848 HIGH
Cpplusworld Cp-vnr-3104 Firmware - Improper Certificate Validation
CVSS 7.4
Details
Vulnerabilities 1,335
Links
MITRE CWE Entry Search this CWE With Exploits