The product does not validate, or incorrectly validates, a certificate.
1,395 vulnerabilities with CWE-295
CVE-2026-1778
MEDIUM
Amazon SageMaker <v3.1.1,v2.256.0 - Info Disclosure
CVSS 5.9
CVE-2026-1531
HIGH
foreman_kubevirt < 0.4.3 - Improper Certificate Validation
CVSS 8.1
CVE-2026-1530
HIGH
fog-kubevirt < 1.5.1 - Man-in-the-Middle via Disabled Certificate Validation
CVSS 8.1
CVE-2026-22696
CRITICAL
dcap-qvl < 0.3.9 - Improper Certificate Validation in QE Identity Collateral
CVE-2026-22250
LOW
wlc < 1.17.0 - Improper Certificate Validation
CVSS 2.5
CVE-2025-32745
MEDIUM
Dell PowerFlex Manager (Appliance) - Improper Certificate Validation
CVSS 4.2
CVE-2025-42611
MEDIUM
Improper certificate validation in multiple RouterOS services
CVSS 6.5
CVE-2025-10539
MEDIUM
Improper TLS Certificate Validation RCE via Malicious Update in DeskTime Time Tracking App
CVSS 4.8
CVE-2025-40745
LOW
Siemens Software Center <V3.5.8.2 - Auth Bypass
CVSS 3.7
CVE-2025-15612
MEDIUM
Wazuh Provisioning Scripts / Build Infrastructure Improper Certificate Validation leading to MITM and RCE
CVSS 4.8
CVE-2025-68482
MEDIUM
Fortinet FortiAnalyzer/FortiManager - Info Disclosure
CVSS 6.9
CVE-2025-40896
MEDIUM
Nozomi Networks Arc < 2.2.0 - Improper Certificate Validation
CVSS 6.5
CVE-2025-67601
HIGH
Rancher Manager - Improper Certificate Validation via CLI Login Command
CVSS 8.3
CVE-2025-67752
HIGH
OpenEMR < 7.0.4 - Improper Certificate Validation in HTTP Client Wrapper
CVSS 8.1
CVE-2025-70058
HIGH
YMFE yapi 1.12.0 - Improper Certificate Validation
CVSS 7.4
CVE-2025-70045
HIGH
jxcore jxm master - Improper Certificate Validation
CVSS 7.4
CVE-2025-70044
MEDIUM
uTools-quickcommand 5.0.3 - Improper Cert Validation
CVSS 6.5
CVE-2025-70043
CRITICAL
Ayms node-To master - Improper Certificate Validation
CVSS 9.1
CVE-2025-66614
CRITICAL
Apache Tomcat 11.0.0-M1-11.0.14 - DoS
CVSS 9.1
CVE-2025-65753
HIGH
Guardian Gryphon v01.06.0006.22 - Command Injection
CVSS 7.5
CVE-2025-9293
HIGH
Certificate Validation Logic - Info Disclosure
CVSS 8.1
CVE-2025-15573
CRITICAL
SolaX Power Pocket WiFi - Improper Certificate Validation
CVSS 9.4
CVE-2025-70029
HIGH
SunbirdEd-portal <1.13.4 - Info Disclosure
CVSS 7.5
CVE-2025-15323
LOW
Tanium TanOS 1.8.3-1.8.3.0199 - Improper Certificate Validation
CVSS 3.7
CVE-2025-68121
CRITICAL
GO < 1.24.13 - Improper Certificate Validation
CVSS 10.0
Details
Vulnerabilities
1,395