Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-295

CWE-295

Improper Certificate Validation

Parent: CWE-287 - Improper Authentication

The product does not validate, or incorrectly validates, a certificate.

1,400 vulnerabilities with CWE-295

CVE-2019-20461 CRITICAL

Alecto IVM-100 2019-11-12 - Unauthenticated Improper Certificate Validation via Custom UDP Protocol

CVE-2019-16281 HIGH

ptarmigan < 0.2.3 - Improper API Token Validation

CVE-2019-8531 CRITICAL

iPhone OS < 12.2, macOS < 10.14.4, watchOS < 5.2 - Improper Certificate Validation in Trust Anchor Management

CVE-2019-8642 LOW

macOS < 10.14.4 - S/MIME Signature Spoofing via Certificate Validation Issue

CVE-2019-17007 HIGH

Network Security Services < 3.44 - Denial of Service via Malformed Netscape Certificate Sequence

CVE-2019-18847 CRITICAL

Enterprise Access Client Auto-Updater <2.0.1 - RCE

CVE-2019-12000 MEDIUM

HPE MSE Msg Gw application E-LTU < 3.2 - Remote Access Restriction Bypass via HTTPS Configuration

CVE-2019-20894 HIGH

Traefik 2.0.0-2.0.0 - Improper Certificate Validation

CVE-2019-16252 MEDIUM

Nutfind.com <3.9.12 - Info Disclosure

CVE-2019-19101 MEDIUM

B&R Automation Studio <4.3.11SP-4.7.2 - SSRF

CVE-2019-4654 MEDIUM

IBM QRadar 7.3.0-7.3.3 Patch 2 - Improper Certificate Validation

CVE-2019-17560 CRITICAL

Apache NetBeans <= 11.2 - Improper Certificate Validation in Autoupdate System

CVE-2019-3762 HIGH

Data Protection Central <19.1 - Improper Certificate Chain

CVE-2019-11688 HIGH

ASUSTOR exFAT Driver <1.0.0.r20 - Info Disclosure

CVE-2019-10091 HIGH

Apache Geode < 1.10.0 - Improper Certificate Validation

CVE-2019-20455 MEDIUM

Global Payments PHP SDK < 2.0.0 - Improper Certificate Validation

CVE-2019-15604 HIGH

Node.js 10.0.0-10.18.9, 13.0.0-13.7.9 - Denial of Service via Crafted X.509 Certificate

CVE-2019-6032 HIGH

NTV News24 < 3.0.0 - Improper Certificate Validation

CVE-2019-6687 HIGH

BIG-IP ASM 15.0.0-15.0.1.1 - Improper Certificate Validation in Cloud Security Services Profile

CVE-2019-16561 HIGH

Jenkins WebSphere Deployer Plugin <1.6.1 - Info Disclosure

CVE-2019-16558 HIGH

Jenkins Spira Importer Plugin <3.2.3 - Info Disclosure

CVE-2019-18826 CRITICAL

Barco ClickShare Button R9861500D01 <1.9.0 - Improper Following of ...

CVE-2019-11554 MEDIUM

Audible < 2.34.0 - Denial of Service via Missing SSL Certificate Validation

CVE-2019-14910 CRITICAL

Keycloak 7.x - Improper Certificate Validation in LDAP StartTLS Authentication

CVE-2019-19271 HIGH

ProFTPD < 1.3.6 - Certificate Revocation List Bypass via Incorrect Iteration Variable

Previous Page 37 of 56 Next

Details

Vulnerabilities 1,400

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy