The product does not validate, or incorrectly validates, a certificate.
1,400 vulnerabilities with CWE-295
CVE-2021-39361
MEDIUM
GNOME evolution-rss < 0.3.96 - Improper Certificate Validation
CVSS 5.9
CVE-2021-39360
MEDIUM
libzapojit < 0.0.3 - Improper Certificate Validation in SoupSessionSync
CVSS 5.9
CVE-2021-39359
MEDIUM
GNOME libgda < 6.0.0 - Improper Certificate Validation in SoupSessionSync
CVSS 5.9
CVE-2021-39358
MEDIUM
libgfbgraph < 0.2.4 - Improper Certificate Validation in SoupSessionSync
CVSS 5.9
CVE-2021-37698
HIGH
Icinga 2.5.0-2.13.0 - Improper Certificate Validation in Writers
CVSS 7.5
CVE-2021-32728
MEDIUM
Nextcloud Desktop Client <3.3.0 - Info Disclosure
CVSS 6.5
CVE-2021-22939
MEDIUM
Node.js 12.0.0-12.22.4 and 16.0.0-16.6.1 - Improper Certificate Validation
CVSS 5.3
CVE-2021-32069
MEDIUM
Mitel MiCollab < 9.3 - Man-in-the-Middle via Improper TLS Negotiation in AWV Component
CVSS 4.8
CVE-2021-31399
MEDIUM
2n Access Unit 2.0 Firmware 2.31.0.40.5 - Improper Certificate Validation
CVSS 4.6
CVE-2021-22926
HIGH
libcurl-using applications < - Info Disclosure
CVSS 7.5
CVE-2021-32581
HIGH
Acronis Cyber Protect < 15.0.27009 - Improper Certificate Validation
CVSS 8.1
CVE-2021-3636
MEDIUM
OpenShift < 4.8 - Improper Certificate Validation in Service CA
CVSS 4.6
CVE-2021-35193
HIGH
Patterson Eaglesoft 18-21 - SQL Injection
CVSS 7.5
CVE-2021-32574
HIGH
HashiCorp Consul 1.3.0-1.10.0 - Improper Certificate Validation in Envoy Proxy TLS Configuration
CVSS 7.5
CVE-2021-34558
MEDIUM
GO < 1.15.14 - Improper Certificate Validation
CVSS 6.5
CVE-2021-32755
MEDIUM
Wire < 3.84 - Improper Certificate Validation in WebSocket Implementation
CVSS 5.4
CVE-2021-31892
HIGH
SINUMERIK Firmware - Improper Certificate Validation
CVSS 7.4
CVE-2021-32727
MEDIUM
Nextcloud Android Client <3.16.1 - Info Disclosure
CVSS 5.7
CVE-2021-36377
HIGH
Fossil <2.14.2, <2.15.2 - Info Disclosure
CVSS 7.5
CVE-2021-3547
HIGH
OpenVPN 3 Core Library <3.6.1 - Auth Bypass
CVSS 7.4
CVE-2021-36371
LOW
Emissary-Ingress <1.13.9 - Auth Bypass
CVSS 3.7
CVE-2021-1134
HIGH
Cisco Catalyst Center < 2.2.2.1 - Unauthenticated Sensitive Data Exposure via X.509 Certificate Validation Bypass
CVSS 7.4
CVE-2021-21571
MEDIUM
Dell UEFI BIOS - Improper Certificate Validation in HTTPS Stack
CVSS 5.9
CVE-2021-1566
HIGH
Cisco AsyncOS - SSL/TLS Man-in-the-Middle
CVSS 7.4
CVE-2021-22895
MEDIUM
Nextcloud Desktop Client <3.3.1 - Info Disclosure
CVSS 5.9
Details
Vulnerabilities
1,400