The product does not validate, or incorrectly validates, a certificate.
1,395 vulnerabilities with CWE-295
CVE-2025-15557
HIGH
TP-Link Tapo H100 < 1.6.1 and Tapo P100 < 1.2.6 - Improper Certificate Validation
CVSS 8.8
CVE-2025-53869
LOW
Brother MFP - SSL/TLS Info Disclosure
CVSS 3.7
CVE-2025-67229
CRITICAL
ToDesktop Builder < 0.32.1 - Improper Certificate Validation
CVSS 9.8
CVE-2025-32057
MEDIUM
Bosch Infotainment ECU - SSL Impersonation
CVSS 6.5
CVE-2025-27377
MEDIUM
Altium Designer <24.9.0 - Info Disclosure
CVSS 5.3
CVE-2025-11043
HIGH
Automation Studio <6.5 - Info Disclosure
CVSS 7.4
CVE-2025-46070
CRITICAL
Automai BotManager 25.2.0 - Remote Code Execution via BotManager.exe
CVSS 9.8
CVE-2025-71063
HIGH
Errands < 46.2.10 - Improper Certificate Validation for CalDAV Servers
CVSS 8.2
CVE-2025-66001
HIGH
NeuVector 5.3.0-5.4.7 - Improper Certificate Validation in OpenID Connect
CVSS 8.8
CVE-2025-14819
MEDIUM
curl 7.87.0-8.17.9 - Improper Certificate Validation via Cached CA Store Reuse
CVSS 5.3
CVE-2025-13034
MEDIUM
curl 8.8.0-8.17.0 - Improper Certificate Validation via QUIC with GnuTLS
CVSS 5.9
CVE-2025-69412
LOW
KDE messagelib <25.11.90 - Info Disclosure
CVSS 3.4
CVE-2025-52598
LOW
Hanwha Vision Camera Firmware < 2.24.00 - Improper Certificate Validation
CVSS 3.7
CVE-2025-68161
MEDIUM
Apache Log4j Core <2.25.2 - SSL Verification Bypass
CVSS 4.8
CVE-2025-14022
HIGH
LINE < 15.4.0 - Improper Certificate Validation in Financial SDK
CVSS 7.7
CVE-2025-13052
MEDIUM
ASUSTOR Data Master 4.1.0-4.3.3.RKD2 and 5.0.0-5.1.0.RN42 - Improper Certificate Validation in SMTP Notification Sender
CVSS 5.9
CVE-2025-65291
HIGH
Aqara Hub M2, M3, and Camera Hub G3 - Improper Certificate Validation in CoAP Gateway Communications
CVSS 7.4
CVE-2025-65290
HIGH
Aqara Hub M2, M3, and Camera Hub G3 Firmware - Improper Certificate Validation
CVSS 7.4
CVE-2025-65830
CRITICAL
meatmeet - Improper Certificate Validation
CVSS 9.1
CVE-2025-40801
HIGH
Siemens COMOS V10.6 < V10.6.1 - Improper Certificate Validation
CVSS 8.1
CVE-2025-40800
HIGH
COMOS V10.6- Simcenter Femap - SSL/TLS Validation
CVSS 7.4
CVE-2025-66491
MEDIUM
Traefik 3.5.0-3.6.2 - Improper Certificate Validation via proxy-ssl-verify Annotation
CVSS 5.9
CVE-2025-61727
MEDIUM
GO < 1.24.11 - Improper Certificate Validation
CVSS 6.5
CVE-2025-61729
HIGH
GO < 1.24.11 - Improper Certificate Validation
CVSS 7.5
CVE-2025-12893
MEDIUM
MongoDB 7.0.0-7.0.25 - Improper Certificate Validation on Windows and Apple Platforms
CVSS 4.2
Details
Vulnerabilities
1,395