CWE-295

Improper Certificate Validation

Parent: CWE-287 - Improper Authentication

The product does not validate, or incorrectly validates, a certificate.

1,400 vulnerabilities with CWE-295
CVE-2019-1590 HIGH
Cisco Nexus 9000 - Insecure TLS Client Auth
CVSS 8.1
CVE-2019-10317 MEDIUM
Jenkins SiteMonitor Plugin < 0.5 - SSL/TLS and Hostname Verification Disabled
CVSS 5.9
CVE-2019-10314 MEDIUM
Jenkins Koji Plugin < 0.3 - Improper Certificate Validation
CVSS 5.9
CVE-2019-11324 HIGH
urllib3 < 1.24.2 - Improper Certificate Validation via SSL Context Handling
CVSS 7.5
CVE-2019-10914 CRITICAL
MatrixSSL < 4.0.2 - Stack-Based Buffer Overflow in X.509 Certificate Verification
CVSS 9.8
CVE-2019-1757 MEDIUM
Cisco IOS and IOS XE - Unauthenticated Sensitive Data Exposure via Smart Call Home Certificate Validation
CVSS 5.9
CVE-2019-1748 HIGH
Cisco IOS - Unauthenticated Improper Certificate Validation
CVSS 7.4
CVE-2019-3814 HIGH
Dovecot 1.1.0-2.2.36 - Improper Certificate Validation
CVSS 7.7
CVE-2019-3841 HIGH
Kubevirt containerized_data_importer 1.4.0-1.5.3 - Improper Certificate Validation in Container Registry Import
CVSS 7.4
CVE-2019-8351 CRITICAL
Heimdal Thor Agent 2.5.17x - Improper Certificate Validation
CVSS 9.1
CVE-2019-6702 MEDIUM
MasterCard Qkr! with MasterPass < 5.0.8 - Improper Certificate Validation
CVSS 5.9
CVE-2019-5729 HIGH
Splunk-SDK-Python < 1.6.6 - Improper Certificate Validation
CVSS 8.1
CVE-2019-3777 HIGH
Pivotal Application Service 2.2.0-2.2.11, 2.3.0-2.3.6, 2.4.0-2.4.2 - SSL Certificate Validation Bypass
CVSS 8.0
CVE-2019-6592 CRITICAL
F5 BIG-IP 14.1.0 - Denial of Service via SSL Certificate Validation
CVSS 9.1
CVE-2019-6266 CRITICAL
Cordaware bestinformed < 6.2.1.0 - Insecure SSL Certificate Verification
CVSS 9.8
CVE-2019-1683 HIGH
Cisco SPA112, SPA525, and SPA5X5 Series IP Phones - Unauthenticated TLS Certificate Validation Bypass
CVSS 7.4
CVE-2019-7728 HIGH
Bosch Smart Camera App <1.3.1 - Man-in-the-Middle
CVSS 7.5
CVE-2019-1659 HIGH
Cisco Prime Infrastructure 2.2-3.4.0 - Unauthenticated Man-in-the-Middle via Improper SSL Certificate Validation
CVSS 7.4
CVE-2019-8337 MEDIUM
mpop 1.4.3 and msmtp 1.8.2 - Improper Certificate Validation
CVSS 5.3
CVE-2019-1003009 HIGH
Jenkins Active Directory Plugin <2.10 - RCE
CVSS 7.4
CVE-2019-3807 LOW
PowerDNS Recursor 4.1.0-4.1.8 - Improper Certificate Validation
CVSS 3.7
CVE-2018-19946 MEDIUM
QNAP Helpdesk < 3.0.3 - Improper Certificate Validation
CVSS 4.2
CVE-2018-11751 MEDIUM
Puppet Server 6.0.0-6.3.9 - Improper Certificate Validation
CVSS 5.4
CVE-2018-21029 CRITICAL
systemd 239-245 - Improper Certificate Validation in DNS Over TLS
CVSS 9.8
CVE-2018-20135 HIGH
Samsung Galaxy Apps <4.4.01.7 - SSRF
CVSS 8.1
Details
Vulnerabilities 1,400
Links
MITRE CWE Entry Search this CWE With Exploits