Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-295

CWE-295

Improper Certificate Validation

Parent: CWE-287 - Improper Authentication

The product does not validate, or incorrectly validates, a certificate.

1,402 vulnerabilities with CWE-295

CVE-2015-7826 CRITICAL

botan < 1.11.22 - Improper Certificate Validation via Wildcard Hostname Matching

CVE-2015-4680 HIGH

FreeRADIUS 2.2.x < 2.2.8 and 3.0.x < 3.0.9 - Improper Certificate Validation

CVE-2015-2330 HIGH

webkitgtk < 2.6.5 - Improper Certificate Validation

CVE-2015-8960 HIGH

Ietf Transport Layer Security < 1.2 - Improper Certificate Validation

CVE-2015-3152 MEDIUM

Oracle MySQL <5.7.3 & MariaDB <5.5.44 - Info Disclosure

CVE-2015-0534 HIGH

RSA BSAFE Suite Certificate Blacklist Bypass via Unsigned Certificate Data

Thycotic Secret Server < 2.3 - Improper Certificate Validation

CVE-2015-4000 LOW

OpenSSL 1.0.1-1.0.1l - Man-in-the-Middle Cipher Downgrade via DHE_EXPORT

CVE-2014-8164 CRITICAL

Red Hat CloudForms 5.x - Certificate Validation Bypass via Insecure OpenSSL Verify Mode

CVE-2014-3230 MEDIUM

LWP::Protocol::https 6.04-6.06 - Improper Certificate Validation via Environment Variable Manipulation

CVE-2014-0161 MEDIUM

ovirt-engine-sdk-python <3.4.0.7, 3.5.0.4 - Info Disclosure

CVE-2014-0104 MEDIUM

Fence-agents <4.0.17 - Man-in-the-Middle

CVE-2014-3495 HIGH

duplicity 0.6.24 - Improper Certificate Validation

CVE-2014-2902 HIGH

wolfssl < 3.2.0 - Improper Certificate Validation

CVE-2014-2901 HIGH

wolfssl < 3.2.0 - Improper Certificate Validation

CVE-2014-8167 MEDIUM

Red Hat Enterprise Virtualization - Improper Certificate Validation

CVE-2014-7143 HIGH

Python Twisted 14.0 - Info Disclosure

CVE-2014-3607 MEDIUM

ldaptive < 1.0.5 and vt-ldap < 3.3.8 - Improper Certificate Validation in DefaultHostnameVerifier

CVE-2014-3250 MEDIUM

Puppet < 3.6.2 - Improper Certificate Validation

CVE-2014-2845 MEDIUM

Cyberduck < 4.4.4 - Improper Certificate Validation

CVE-2014-7242 MEDIUM

SumaHo <3.0.0, <1.2.2 - Info Disclosure

CVE-2014-3706 MEDIUM

Red Hat Enterprise MRG 3 - Improper Certificate Validation in vdsm X.509 Certificates

CVE-2014-3451 HIGH

OpenFire < 3.9.3 - Improper Certificate Validation

Cisco Adaptive Security Appliance Software - Improper Certificate Validation in Smart Call Home

Ignite Realtime Smack XMPP API <4.0.0-rc1 - Info Disclosure

Previous Page 54 of 57 Next

Details

Vulnerabilities 1,402

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy