The product does not validate, or incorrectly validates, a certificate.
1,335 vulnerabilities with CWE-295
CVE-2026-30794
HIGH
RustDesk Client <1.4.5 - Auth Bypass
CVSS 8.1
CVE-2026-2748
MEDIUM
SEPPmail Secure Email Gateway <15.0.1 - Auth Bypass
CVSS 5.3
CVE-2026-3336
HIGH
AWS-LC <1.69.0 - Auth Bypass
CVSS 7.5
CVE-2026-3100
MEDIUM
ADM 4.1.0-4.3.3.ROF1 & 5.0 - MitM
CVSS 6.5
CVE-2026-27134
HIGH
Strimzi 0.49.0-0.50.0 - Auth Bypass
CVSS 8.1
CVE-2026-27133
MEDIUM
Strimzi 0.47.0-0.50.1 - Auth Bypass
CVSS 5.9
CVE-2026-24122
LOW
Cosign <=3.0.4 - Auth Bypass
CVSS 3.7
CVE-2026-0872
LOW
Thales SafeNet Agent <4.1.2 - Signature Spoofing
CVE-2026-0228
LOW
PAN-OS - Certificate Validation
CVE-2026-21228
HIGH
Azure Local - RCE
CVSS 8.1
CVE-2026-25961
HIGH
SumatraPDF <3.5.2 - RCE
CVSS 7.5
CVE-2026-22613
MEDIUM
Eaton Network M3 - SSRF
CVSS 5.7
CVE-2026-25644
HIGH
DataHub <1.3.1.8 - SSL/TLS MitM
CVSS 7.5
CVE-2026-25160
CRITICAL
Alist < 3.57.0 - Improper Certificate Validation
CVSS 9.1
CVE-2026-24935
MEDIUM
ADM <4 - SSRF
CVSS 5.6
CVE-2026-24934
LOW
ADM <4.3.3.ROF1, <5.1.1.RCI1 - Info Disclosure
CVSS 3.7
CVE-2026-24933
MEDIUM
API - SSL/TLS Validation
CVSS 5.9
CVE-2026-24932
MEDIUM
ADM <4.3.3.ROF1 - Info Disclosure
CVSS 5.9
CVE-2026-1778
MEDIUM
Amazon SageMaker <v3.1.1,v2.256.0 - Info Disclosure
CVSS 5.9
CVE-2026-1531
HIGH
Rubygems Foreman Kubevirt < 0.4.3 - Improper Certificate Validation
CVSS 8.1
CVE-2026-1530
HIGH
Rubygems Fog-kubevirt < 1.5.1 - Improper Certificate Validation
CVSS 8.1
CVE-2026-22696
CRITICAL
Crates.io Dcap-qvl < 0.3.9 - Improper Certificate Validation
CVE-2026-22250
LOW
Weblate Wlc < 1.17.0 - Improper Certificate Validation
CVSS 2.5
CVE-2025-10539
MEDIUM
Improper TLS Certificate Validation RCE via Malicious Update in DeskTime Time Tracking App
CVSS 4.8
CVE-2025-40745
LOW
Siemens Software Center <V3.5.8.2 - Auth Bypass
CVSS 3.7
Details
Vulnerabilities
1,335