Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-295

CWE-295

Improper Certificate Validation

Parent: CWE-287 - Improper Authentication

The product does not validate, or incorrectly validates, a certificate.

1,395 vulnerabilities with CWE-295

CVE-2024-47258 HIGH

2N Access Commander <3.3 - Man In The Middle

CVE-2024-23970 MEDIUM

ChargePoint Home Flex Firmware - Unauthenticated Transport Security Compromise via CURLOPT_SSL_VERIFYHOST

CVE-2024-23928 MEDIUM

Pioneer DMH-WT7600NEX Firmware - Unauthenticated Improper Certificate Validation in Telematics Functionality

CVE-2024-52330 HIGH

ECOVACS Deebot and Lawnmower Firmware - Unauthenticated TLS Certificate Validation Bypass

CVE-2024-52329 HIGH

ECOVACS HOME < 3.0.0 - Unauthenticated TLS Certificate Validation Bypass

CVE-2024-42186 LOW

BigFix Patch Download Plug-ins - Info Disclosure

CVE-2024-48460 MEDIUM

tabby-ssh < 1.0.214 - Improper Certificate Validation

CVE-2024-54849 MEDIUM

CP Plus CP-VNR-3104 B3223P22C02424 - Improper Certificate Validation

CVE-2024-54848 HIGH

CP Plus CP-VNR-3104 B3223P22C02424 - Improper Certificate Validation

CVE-2024-54847 MEDIUM

CP Plus CP-VNR-3104 B3223P22C02424 - Improper Certificate Validation

CVE-2024-54846 MEDIUM

CP Plus CP-VNR-3104 B3223P22C02424 - Improper Certificate Validation

CVE-2024-40702 HIGH

IBM Cognos Controller <11.0.1 - Info Disclosure

CVE-2024-56521 CRITICAL

TCPDF < 6.8.0 - Improper Certificate Validation via libcurl

CVE-2024-47119 MEDIUM

IBM Storage Defender - Resiliency Service <2.0.10 - SSL Spoofing

CVE-2024-6001 HIGH

Lenovo Accessories and Display Manager < 1.0.5.0.5 - Improper Certificate Validation

CVE-2024-4762 HIGH

Lenovo Accessories and Display Manager <1.0.5.0.5 & Display Control Center <3.0.32161.0 - Privilege Escalation

CVE-2024-21543 HIGH

djoser < 2.3.0 - Authentication Bypass via Database Query Fallback

CVE-2024-12174 LOW

Tenable Security Center - Privilege Escalation

CVE-2024-54147 MEDIUM

Altair < 8.0.5 - Improper Certificate Validation

CVE-2024-48865 HIGH

QNAP QTS and QuTS hero - Improper Certificate Validation

CVE-2024-6219 LOW

LXD < 5.21.1 - Improper Certificate Validation in PKI Mode

CVE-2024-6156 LOW

LXD < 5.21.2 - Improper Certificate Validation in PKI Mode

CVE-2024-53846 MEDIUM

Erlang/OTP 25.3.2.8-25.3.2.16, 26.2-26.2.5.6, 27.0-27.1.3 - Improper Certificate Validation

CVE-2024-45205 HIGH

Unifi iOS App <10.18.0 - Info Disclosure

CVE-2024-5921 HIGH

Palo Alto Networks GlobalProtect - Improper Certificate Validation

Previous Page 13 of 56 Next

Details

Vulnerabilities 1,395

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy