Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-295

CWE-295

Improper Certificate Validation

Parent: CWE-287 - Improper Authentication

The product does not validate, or incorrectly validates, a certificate.

1,401 vulnerabilities with CWE-295

CVE-2016-8231 HIGH

Lenovo Service Bridge <4 - Code Injection

CVE-2016-3083 HIGH

Apache Hive < 1.2.2 and 2.0.x < 2.0.1 - Improper Certificate Validation

CVE-2016-4467 MEDIUM

Apache Qpid Proton - Improper Certificate Validation

CVE-2016-7815 MEDIUM

Cybozu Remote Service Manager 3.0.0-3.1.4 - Improper Certificate Validation

CVE-2016-5016 MEDIUM

Pivotal Cloud Foundry < 239 and UAA < 3.4.1 - Improper Certificate Validation

CVE-2016-1519 MEDIUM

Grandstream Wave <1.0.1.26 - Info Disclosure

CVE-2016-1221 MEDIUM

Jetstar App <3.0.0 - Info Disclosure

CVE-2016-1210 MEDIUM

105 BANK app <1.2 - Info Disclosure

CVE-2016-1198 MEDIUM

Photopt for Android <2.0.1 - Info Disclosure

CVE-2016-1186 MEDIUM

Kintone mobile for Android <1.0.6 - Info Disclosure

CVE-2016-4840 MEDIUM

Coordinate Plus < 1.0.2 - Improper Certificate Validation

CVE-2016-4832 MEDIUM

WAON Service Application < 1.4.1 - Improper Certificate Validation

CVE-2016-4830 MEDIUM

Sushiro App for iOS < 2.1.16 and Android < 2.1.16.1 - Improper Certificate Validation

CVE-2016-4829 MEDIUM

DMM Movie Player App < 1.2.1 and < 2.1.3 - Improper Certificate Validation

CVE-2016-1184 MEDIUM

Tokyo Star bank App <1.4 - Info Disclosure

CVE-2016-1148 HIGH

Akerun Smart Lock Robot App <1.2.4 - Info Disclosure

CVE-2016-4818 MEDIUM

DMMFX Trade and DMMFX DEMO Trade < 1.5.0 and GAITAMEJAPAN FX Trade < 1.4.0 - Improper Certificate Validation

CVE-2016-1132 HIGH

Shoplat App <1.18.00 - Info Disclosure

CVE-2016-9319 MEDIUM

Trend Micro Enterprise Mobile Security <9.7.1193 - Info Disclosure

CVE-2016-9892 MEDIUM

ESET Endpoint Antivirus and Endpoint Security for macOS < 6.4.168.0 - Improper Certificate Validation

CVE-2016-7662 HIGH

iPhone OS < 10.2, macOS < 10.12.2, watchOS < 3.1.3 - Certificate Spoofing via Improper Validation

CVE-2016-2402 MEDIUM

OkHttp < 2.7.4 and 3.x < 3.1.2 - Certificate Pinning Bypass via Trusted CA Certificate Chain

CVE-2016-9015 LOW

Python urllib3 <1.19 - Info Disclosure

CVE-2016-7171 MEDIUM

NetApp Plug-in for Symantec NetBackup < 2.0 - Improper Certificate Validation

CVE-2016-1000033 LOW

Shotwell <0.22.0 - SSL Validation Flaw

Previous Page 52 of 57 Next

Details

Vulnerabilities 1,401

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy