Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-295

CWE-295

Improper Certificate Validation

Parent: CWE-287 - Improper Authentication

The product does not validate, or incorrectly validates, a certificate.

1,397 vulnerabilities with CWE-295

CVE-2023-40104 HIGH

Android - Remote Information Disclosure via Untrusted Cryptographic Certificates

CVE-2023-47537 MEDIUM

FortiOS 7.0.0-7.0.15, 7.2.0-7.2.6, 7.4.0-7.4.1 - Unauthenticated Man-in-the-Middle via FortiLink Certificate Validation

CVE-2023-47700 MEDIUM

IBM Storage Virtualize 8.6 - Improper Certificate Validation

CVE-2023-43017 HIGH

IBM Security Verify Access <10.0.6.1 - Privilege Escalation

CVE-2023-32330 HIGH

IBM Security Verify Access 10.0.0.0-10.0.6.1 - Improper Certificate Validation

CVE-2023-28807 MEDIUM

Zscaler Internet Access < 6.2r.290 - Improper Certificate Validation via SNI Mismatch

CVE-2023-50356 MEDIUM

AREAL Topkapi Vision Server < 6.2.4719 - Improper Certificate Validation

CVE-2023-51837 CRITICAL

Ylianst MeshCentral 1.1.16 - Info Disclosure

CVE-2023-33760 MEDIUM

SpliceCom Maximiser Soft PBX <1.5 - Info Disclosure

CVE-2023-33757 MEDIUM

Splicecom iPCS <v2.8 - Info Disclosure

CVE-2023-6043 HIGH

Lenovo Vantage - Privilege Escalation

CVE-2023-33295 MEDIUM

Cohesity DataProtect <6.8.1_u5-7.1 - Info Disclosure

CVE-2023-51662 MEDIUM

Snowflake .NET <2.1.4 - Info Disclosure

CVE-2023-5594 HIGH

ESET Endpoint Antivirus and Server Security - Improper Certificate Validation in Secure Traffic Scanning

CVE-2023-1514 HIGH

RTU500 Scripting interface - Info Disclosure

CVE-2023-6680 HIGH

GitLab 11.6-16.4.3, 16.5-16.5.3, 16.6-16.6.1 - Improper Certificate Validation in Smartcard Authentication

CVE-2023-48427 HIGH

SINEC INS < V1.0 SP2 Update 2 - Privilege Escalation

CVE-2023-50454 MEDIUM

Zammad < 6.2.0 - Improper Certificate Validation

CVE-2023-49247 HIGH

Huawei EMUI and HarmonyOS - Permission Verification

CVE-2023-5909 HIGH

KEPServerEX < 6.14.263.0 - Unauthenticated Improper Certificate Validation

CVE-2023-49312 CRITICAL

Precision Bridge <7.3.21 - Info Disclosure

CVE-2023-43082 HIGH

Dell Unity <5.3 - Privilege Escalation

CVE-2023-48054 HIGH

localstack 2.3.2 - Missing SSL Certificate Validation

CVE-2023-48052 HIGH

httpie < 3.2.3 - Missing SSL Certificate Validation

CVE-2023-42532 MEDIUM

Samsung Android FotaAgent - Improper Certificate Validation

Previous Page 18 of 56 Next

Details

Vulnerabilities 1,397

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy