CWE-345

Insufficient Verification of Data Authenticity

Parent: CWE-693 - Protection Mechanism Failure

The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.

552 vulnerabilities with CWE-345
CVE-2023-36134 CRITICAL
PHP Jabbers Class Scheduling System 1.0 - RCE
CVSS 9.8
CVE-2023-3749 HIGH
VideoEdge - Info Disclosure
CVSS 7.1
CVE-2023-36858 HIGH
BIG-IP Edge Client - Info Disclosure
CVSS 7.1
CVE-2023-2314 MEDIUM
Google Chrome <111.0.5563.64 - CSRF
CVSS 6.5
CVE-2023-37920 HIGH
Certifi < 2023.7.22 - Data Authenticity Bypass
CVSS 7.5
CVE-2023-30562 MEDIUM
BD Alaris Guardrails Editor < 12.1.2 - Data Authenticity Bypass
CVSS 6.7
CVE-2023-30559 MEDIUM
BD Alaris 8015 Pcu Firmware < 12.1.3 - Authentication Bypass
CVSS 5.2
CVE-2023-25178 CRITICAL
Honeywell C300 Firmware < 501.6hf8 - Data Authenticity Bypass
CVSS 9.8
CVE-2023-37264 LOW
Linuxfoundation Tekton Pipelines - Data Authenticity Bypass
CVSS 3.7
CVE-2023-3325 HIGH
CMS Commander <2.287 - Auth Bypass
CVSS 8.1
CVE-2023-30759 HIGH
Ricoh Printer Driver Packager NX < 1.1.26 - CSRF
CVSS 7.8
CVE-2023-2897 LOW
Brizy Page Builder <2.4.18 - Info Disclosure
CVSS 3.7
CVE-2023-2866 HIGH
Advantech WebAccess <8.4.5 - Code Injection
CVSS 7.3
CVE-2023-3028 HIGH
HopeChart HQT-401 - Unauthenticated RCE
CVSS 8.6
CVE-2023-2987 CRITICAL
Wordapp < 1.5.0 - Data Authenticity Bypass
CVSS 9.8
CVE-2023-28386 HIGH
Snap One OvrC Pro <7.2 - Code Execution
CVSS 8.6
CVE-2023-32993 MEDIUM
Jenkins Saml Single Sign ON < 2.0.2 - Origin Validation Error
CVSS 4.8
CVE-2023-31502 HIGH
Altenergy Power Control Software C1.2.5 - RCE
CVSS 7.2
CVE-2023-28863 CRITICAL
AMI MegaRAC SPx12-SPx13 - Info Disclosure
CVSS 9.1
CVE-2023-27748 CRITICAL
Blackvue Dr750-2ch Lte Firmware - Data Authenticity Bypass
CVSS 9.8
CVE-2023-26467 MEDIUM
Open Redirect
CVSS 5.4
CVE-2023-27979 MEDIUM
Schneider-electric Custom Reports - Data Authenticity Bypass
CVSS 6.5
CVE-2023-27977 MEDIUM
Schneider-electric Custom Reports - Data Authenticity Bypass
CVSS 6.5
CVE-2023-27982 HIGH
Schneider-electric Custom Reports - Data Authenticity Bypass
CVSS 8.8
CVE-2023-0350 MEDIUM
Akuvox E11 Firmware - Data Authenticity Bypass
CVSS 6.5
Details
Vulnerabilities 552
Links
MITRE CWE Entry Search this CWE With Exploits