Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-295

CWE-295

Improper Certificate Validation

Parent: CWE-287 - Improper Authentication

The product does not validate, or incorrectly validates, a certificate.

1,402 vulnerabilities with CWE-295

CVE-2014-1266 HIGH

Apple iOS 6.x-7.0.5, macOS 10.9.x, tvOS 6.x - Improper Certificate Validation

CVE-2013-10001 MEDIUM

HTC One/Sense 4.x - Info Disclosure

CVE-2013-0264 HIGH

MRG Management Console - Improper Certificate Validation

CVE-2013-2255 MEDIUM

OpenStack Keystone 2013 and Compute 2013.1 - Improper Certificate Validation

CVE-2013-7201 HIGH

PayPal < 5.3 - Improper Certificate Validation

CVE-2013-6662 MEDIUM

Google Chrome - Improper Certificate Validation

CVE-2013-7450 HIGH

pulp < 2.2.1-1 - Improper Certificate Validation

Mozilla Firefox <19 - Info Disclosure

CVE-2012-0955 MEDIUM

software-properties - SSL/TLS Man-in-the-Middle

CVE-2012-1096 MEDIUM

NetworkManager <0.9 - Privilege Escalation

CVE-2012-1316 MEDIUM

Cisco IronPort Web Security Appliance - Improper Certificate Validation

CVE-2012-5518 HIGH

ovirt vdsm - Improper Certificate Validation

CVE-2012-6071 HIGH

nusoap < 0.7.3-5 - Improper Certificate Validation

CVE-2012-6709 MEDIUM

ELinks 0.12 and Twibright Links 2.3 - Improper Certificate Validation

Fortinet Fortigate UTM - Info Disclosure

Trillian 5.1.0.19 - Improper Certificate Validation

CVE-2012-5822 HIGH

Mozilla Zamboni - Improper Certificate Validation in Contribution Feature

CVE-2012-5821 MEDIUM

Lynx - Improper Certificate Validation

CVE-2012-5819 HIGH

FilesAnywhere - Improper Certificate Validation

CVE-2012-5817 HIGH

Amazon Ec2 API Tools Java Library - Improper Certificate Validation

CVE-2012-5810 MEDIUM

Chase Mobile - Improper Certificate Validation

Apache Commons HttpClient 3.x - Improper Certificate Validation

CVE-2012-3446 MEDIUM

Apache Libcloud < 0.11.1 - Improper Certificate Validation

Siemens SIMATIC S7-1200 2.x - Info Disclosure

CVE-2012-2993 MEDIUM

Microsoft Windows Phone 7 - SSL Man-in-the-Middle

Previous Page 55 of 57 Next

Details

Vulnerabilities 1,402

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy