Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-295

CWE-295

Improper Certificate Validation

Parent: CWE-287 - Improper Authentication

The product does not validate, or incorrectly validates, a certificate.

1,395 vulnerabilities with CWE-295

CVE-2026-7821 HIGH

Ivanti Endpoint Manager Mobile < 12.6.1.1, < 12.7.0.1, < 12.8.0.1 - Unauthenticated Improper Certificate Validation

CVE-2026-5787 HIGH

Ivanti Endpoint Manager Mobile < 12.6.1.1, 12.7.0.1, 12.8.0.1 - Unauthenticated Certificate Spoofing

CVE-2026-42011 HIGH

Gnutls: gnutls: security bypass due to incorrect name constraint handling

CVE-2026-40243 MEDIUM

Incus OVN TLS verification accepts peer-supplied roots and permits endpoint impersonation

CVE-2026-6860 MEDIUM

Eclipse Vert.x 4.3.4-4.5.25, 5.0.0-5.0.10 - Improper Certificate Validation

CVE-2026-41016 MEDIUM

Apache Airflow Providers SMTP: No certificate validation on SMTP STARTTLS connections in SMTP provider

CVE-2026-40974 MEDIUM

Spring Boot <4.0.6 - SSL Hostname Verification Bypass

CVE-2026-40971 MEDIUM

Spring Boot 4.0.0-4.0.5 - Auth Bypass

CVE-2026-40970 MEDIUM

Spring Boot 4.0.0-4.0.5 - Auth Bypass

CVE-2026-40557 MEDIUM

Apache Storm Prometheus Reporter: Disabling TLS verification for Prometheus Reporter also disables it for all other connections

CVE-2026-40944 MEDIUM

Oxia: TLS CA certificate chain validation fails with multi-certificate PEM bundles

CVE-2026-39388 LOW

OpenBao's Certificate Authentication Allows Token Renewal With Different Certificate

CVE-2026-23776 HIGH

Dell PowerProtect Data Domain - Privilege Escalation

CVE-2026-20184 CRITICAL

Cisco Webex Meetings Certificate Validation Vulnerability

CVE-2026-39984 MEDIUM

Sigstore Timestamp Authority has Improper Certificate Validation in verifier

CVE-2026-0233 LOW

Autonomous Digital Experience Manager: Improper validation of ADEM certificate

CVE-2026-34477 MEDIUM

Apache Log4j Core: verifyHostName attribute silently ignored in TLS configuration, allowing hostname verification bypass

CVE-2026-5501 HIGH

Improper Certificate Signature Verification in X.509 Chain Validation Allows Forged Leaf Certificates

CVE-2026-5263 MEDIUM

URI nameConstraints not enforced in ConfirmNameConstraints()

CVE-2026-5194 CRITICAL

wolfSSL ECDSA Certificate Verification

CVE-2026-35207 MEDIUM

deepinid plugin in dde-control-center is configured to skip TLS certificate verification when downloading avatar from remote server

CVE-2026-33753 MEDIUM

Improper Certificate Validation in rfc3161-client

CVE-2026-33810 HIGH

Case-sensitive excludedSubtrees name constraints cause Auth Bypass in crypto/x509

CVE-2026-32281 HIGH

Inefficient policy validation in crypto/x509

CVE-2026-34580 HIGH

Botan 3.11.0 Trust Anchor Confusion - Certificate Authentication Bypass

Previous Page 3 of 56 Next

Details

Vulnerabilities 1,395

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy