The product does not validate, or incorrectly validates, a certificate.
1,401 vulnerabilities with CWE-295
CVE-2017-15341
HIGH
Huawei AR3200 V200R008C20/C30, TE40/50/60 V600R006C00 DoS via X.509 Certificate Decoding
CVSS 7.5
CVE-2017-12721
MEDIUM
Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump 1.1, 1.5, 1.6 - Improper Certificate Validation
CVSS 5.9
CVE-2017-9968
MEDIUM
Schneider Electric IGSS Mobile < 3.01 - Man-in-the-Middle via Certificate Validation Bypass
CVSS 5.9
CVE-2017-15698
MEDIUM
Apache Tomcat Native 1.1.23-1.1.34 and 1.2.0-1.2.14 - Improper Certificate Validation in AIA-Extension Field
CVSS 5.9
CVE-2017-1000396
MEDIUM
Jenkins <2.73.1, <2.83 - SSL Verification
CVSS 5.9
CVE-2017-1000417
MEDIUM
MatrixSSL 3.7.2 - Improper Certificate Validation via OID Comparison Logic
CVSS 5.3
CVE-2017-6142
MEDIUM
F5 BIG-IP AFM 11.6.0-11.6.2, 12.1.0-12.1.2, 13.0.0 - Improper Certificate Validation
CVSS 4.8
CVE-2017-1000415
MEDIUM
MatrixSSL 3.7.2 - Improper Certificate Validation in X.509 UTCTime Date Range
CVSS 5.9
CVE-2017-17718
MEDIUM
net-ldap < 0.16.0 - Improper Certificate Validation
CVSS 5.9
CVE-2017-17716
MEDIUM
GitLab 9.4.x - Improper Certificate Validation in LDAP SSL Verification
CVSS 5.9
CVE-2017-3194
HIGH
Pandora iOS App < 8.3.2 - Exposure of Sensitive Information via Improper SSL Certificate Validation
CVSS 8.1
CVE-2017-3190
HIGH
Flash Seats Mobile App < Android 1.7.9 and < iOS 1.9.51 - Improper Certificate Validation
CVSS 7.5
CVE-2017-15114
HIGH
Red Hat OpenStack Platform - Improper Certificate Validation in libvirtd TLS Configuration
CVSS 8.1
CVE-2017-8213
MEDIUM
Huawei SMC2.0 Multiple Versions - DoS via TLS/DTLS Certificate Validation
CVSS 5.3
CVE-2017-15528
LOW
Install Norton Security < 7.6 - Certificate Spoofing via Improper Certificate Validation
CVSS 3.7
CVE-2017-1000209
MEDIUM
nv-websocket-client - Man-in-the-Middle
CVSS 5.9
CVE-2017-11770
HIGH
.NET Core <2.0 - DoS
CVSS 7.5
CVE-2017-9758
HIGH
Savitech Driver < 2.8.0.3 - Improper Certificate Validation via Silent Trusted Root Installation
CVSS 7.4
CVE-2017-2913
MEDIUM
Circle with Disney Firmware - Improper Certificate Validation
CVSS 5.9
CVE-2017-1000256
HIGH
libvirt 2.3.0-3.8.0 - Improper Certificate Validation via QEMU verify-peer=no Default
CVSS 8.1
CVE-2017-7080
HIGH
iPhone OS < 10.3.3, macOS < 10.12.6, tvOS < 10.2.2, watchOS < 3.2.3 - Certificate Validation Bypass
CVSS 7.5
CVE-2017-6144
HIGH
F5 BIG-IP PEM 12.1.0-12.1.2 - Improper Certificate Validation in TAC Database Download
CVSS 7.4
CVE-2017-13083
MEDIUM
Rufus < 2.17 - Improper Certificate Validation in Update Mechanism
CVSS 5.3
CVE-2017-10620
HIGH
Juniper Junos OS < 12.1X46-D71, < 12.3X48-D55, < 15.1X49-D110 - Improper Certificate Validation
CVSS 7.4
CVE-2017-1000097
HIGH
Go - Info Disclosure
CVSS 7.5
Details
Vulnerabilities
1,401