Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-295

CWE-295

Improper Certificate Validation

Parent: CWE-287 - Improper Authentication

The product does not validate, or incorrectly validates, a certificate.

1,335 vulnerabilities with CWE-295

CVE-2025-64685 HIGH

Jetbrains Youtrack < 2025.3.104432 - Improper Certificate Validation

CVE-2025-64432 MEDIUM

Kubevirt < 1.5.3 - Authentication Bypass

CVE-2025-56231 CRITICAL

Tonec Internet Download Manager - Improper Certificate Validation

CVE-2025-54470 HIGH

Neuvector < 5.3.5 - Improper Certificate Validation

CVE-2025-58188 HIGH

GO < 1.24.8 - Improper Certificate Validation

CVE-2025-62375 MEDIUM

In-toto Go-witness < 0.9.1 - Improper Certificate Validation

CVE-2025-11619 HIGH

Devolutions Server < 2025.2.15.0 - Improper Certificate Validation

CVE-2025-62371 HIGH

Amazon Opensearch Data Prepper - Improper Certificate Validation

CVE-2025-6026 LOW

Lenovo UDC - Info Disclosure

CVE-2025-10699 MEDIUM

Lenovo LeCloud - Info Disclosure

CVE-2025-11695 HIGH

Mongodb Rust Driver < 3.2.5 - Improper Certificate Validation

CVE-2025-11633 LOW

Furbo Mini Firmware < 074 - Authentication Bypass

CVE-2025-61778 CRITICAL

Nuget Akka.remote < 1.5.52 - Missing Authentication

CVE-2025-34235 HIGH

Vasion Virtual Appliance Application - Improper Certificate Validation

CVE-2025-10548 MEDIUM

CleverControl v11.5.1041.6 - RCE

CVE-2025-34199 HIGH

Vasion Virtual Appliance Application - Improper Certificate Validation

CVE-2025-59353 HIGH

Linuxfoundation Dragonfly < 2.1.0 - Missing Authorization

CVE-2025-59347 MEDIUM

Linuxfoundation Dragonfly < 2.1.0 - Improper Certificate Validation

CVE-2025-35434 MEDIUM

Cisa Thorium < 1.1.2 - Improper Certificate Validation

CVE-2025-9708 MEDIUM

Kubernetes C# client - Man-in-the-Middle

CVE-2025-55109 CRITICAL

Control-M/Agent <9.0.20 - Auth Bypass

CVE-2025-50944 HIGH

AVTECH EagleEyes 2.0.0 - Info Disclosure

CVE-2025-58781 MEDIUM

WTW-EAGLE App - Info Disclosure

CVE-2025-9785 HIGH

PaperCut Print Deploy - Info Disclosure

CVE-2025-33099 MEDIUM

IBM Concert Software <1.1.0 - Man In The Middle

Previous Page 6 of 54 Next

Details

Vulnerabilities 1,335

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy