The product does not validate, or incorrectly validates, a certificate.
1,335 vulnerabilities with CWE-295
CVE-2025-46551
LOW
JRuby-OpenSSL <0.15.4 - SSRF
CVSS 3.7
CVE-2025-3218
MEDIUM
I - Improper Certificate Validation
CVSS 5.4
CVE-2025-37730
MEDIUM
Logstash - SSL Validation
CVSS 6.5
CVE-2025-20670
MEDIUM
Mediatek Nr16 - Improper Certificate Validation
CVSS 5.7
CVE-2025-27820
HIGH
Apache Httpclient < 5.4.3 - Improper Certificate Validation
CVSS 7.5
CVE-2025-28169
HIGH
BYD QIN PLUS DM-i Dilink OS - Info Disclosure
CVSS 8.1
CVE-2025-26478
LOW
Dell Elastic Cloud Storage < 3.8.1.4 - Improper Certificate Validation
CVSS 3.1
CVE-2025-22459
MEDIUM
Ivanti Endpoint Manager <2024 SU1, <2022 SU7 - Info Disclosure
CVSS 4.8
CVE-2025-30000
MEDIUM
Siemens License Server <V4.3 - Privilege Escalation
CVSS 6.7
CVE-2025-0254
MEDIUM
HCL Digital Experience <9.5 CF226 - SSRF
CVSS 5.9
CVE-2025-23118
MEDIUM
UniFi Protect < - Privilege Escalation
CVSS 6.4
CVE-2025-1001
MEDIUM
Medixant RadiAnt DICOM Viewer - MITM
CVSS 5.7
CVE-2025-1002
MEDIUM
MicroDicom DICOM Viewer 2024.03 - MITM
CVSS 5.7
CVE-2025-1193
HIGH
Devolutions Remote Desktop Manager - Improper Certificate Validation
CVSS 8.1
CVE-2025-23114
CRITICAL
Veeam Updater - RCE
CVSS 9.0
CVE-2025-1014
HIGH
Firefox <135 - Info Disclosure
CVSS 8.8
CVE-2025-23091
MEDIUM
UniFi OS - MitM
CVSS 5.9
CVE-2025-0501
HIGH
Amazon WorkSpaces - Man-In-The-Middle
CVSS 7.5
CVE-2025-0500
HIGH
Amazon - SSRF
CVSS 7.5
CVE-2025-20126
MEDIUM
Cisco ThousandEyes Endpoint Agent - Info Disclosure
CVSS 4.8
CVE-2025-0239
MEDIUM
Firefox < 134 & Thunderbird < 128.6 - SSL Validation
CVSS 4.0
CVE-2024-14024
MEDIUM
Video Station <5.8.2 - Auth Bypass
CVSS 6.7
CVE-2024-13990
CRITICAL
MicroWorld eScan AV - SSRF
CVE-2024-31854
HIGH
SICAM TOOLBOX II < V07.11 - Man-in-the-Middle
CVSS 8.1
CVE-2024-31853
HIGH
SICAM TOOLBOX II < V07.11 - Man-in-the-Middle
CVSS 8.1
Details
Vulnerabilities
1,335