Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-295

CWE-295

Improper Certificate Validation

Parent: CWE-287 - Improper Authentication

The product does not validate, or incorrectly validates, a certificate.

1,400 vulnerabilities with CWE-295

CVE-2020-10659 MEDIUM

Entrust Entelligence Security Provider <10.0.60 - Info Disclosure

CVE-2020-7919 HIGH

Go <1.12.16, <1.13.7 - Info Disclosure

CVE-2020-6175 MEDIUM

Citrix SD-WAN <10.2.6, <11.0.3 - Missing SSL Certificate Validation

CVE-2020-9321 HIGH

Traefik 2.x < 2.1.4 and TraefikEE 2.0.0 - Certificate Information Exposure in Configuration Watcher

CVE-2020-1887 CRITICAL

osquery 2.9.0-4.2.0 - Improper Certificate Validation

CVE-2020-8987 HIGH

Avast AntiTrack < 1.5.1.172 and AVG AntiTrack < 2.0.0.178 - Improper Certificate Validation

CVE-2020-3155 HIGH

Cisco Intelligent Proximity - Info Disclosure

CVE-2020-9434 CRITICAL

lua-openssl 0.7.7-1 - Improper Certificate Validation

CVE-2020-9433 CRITICAL

lua-openssl 0.7.7-1 - Improper Certificate Validation in openssl_x509_check_email

CVE-2020-9432 CRITICAL

lua-openssl 0.7.7-1 - Improper Certificate Validation

CVE-2020-7043 CRITICAL

openfortivpn < 1.12.0 - Improper Certificate Validation via Hostname Comparison

CVE-2020-7042 MEDIUM

openfortivpn < 1.12.0 - Improper Certificate Validation

CVE-2020-7041 MEDIUM

openfortivpn < 1.12.0 - Improper Certificate Validation

CVE-2020-7942 MEDIUM

Puppet <6.13.0, <5.5.19 - Info Disclosure

CVE-2020-7956 CRITICAL

HashiCorp Nomad <0.10.2 - Privilege Escalation

CVE-2020-5526 MEDIUM

AWMS Mobile App <2.0.5-2.0.8 - SSL/TLS Info Disclosure

CVE-2020-7904 HIGH

JetBrains IntelliJ IDEA <2019.3 - Info Disclosure

CVE-2020-5523 HIGH

Android App - SSL/TLS Man-In-The-Middle

CVE-2020-5522 HIGH

Kantan Netprint App <2.0.3 - SSL/TLS Info Disclosure

CVE-2020-5521 HIGH

Kantan Netprint <2.0.2 - SSL/TLS Info Disclosure

CVE-2020-5520 HIGH

Netprint App <3.2.3 - Info Disclosure

CVE-2020-3940 MEDIUM

VMware Workspace ONE SDK - Info Disclosure

CVE-2020-1929 HIGH

Apache Beam 2.10.0-2.16.0 - Improper Certificate Validation in MongoDB Connector

CVE-2020-0601 HIGH KEV

Windows 10 and Windows Server - Certificate Spoofing via ECC Certificate Validation

CVE-2019-25652 HIGH

UniFi Network Controller Improper Certificate Validation Leading to Credential Theft via MITM

Previous Page 36 of 56 Next

Details

Vulnerabilities 1,400

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy