CWE-345

Insufficient Verification of Data Authenticity

Parent: CWE-693 - Protection Mechanism Failure

The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.

552 vulnerabilities with CWE-345
CVE-2026-21527 MEDIUM
Microsoft Exchange Server - Info Disclosure
CVSS 6.5
CVE-2026-1642 MEDIUM
NGINX OSS/Plus - Info Disclosure
CVSS 5.9
CVE-2026-24775 MEDIUM
Openproject < 17.0.2 - Data Authenticity Bypass
CVSS 6.3
CVE-2026-24772 HIGH
Openproject < 17.0.2 - Data Authenticity Bypass
CVSS 8.9
CVE-2026-23966 CRITICAL
sm-crypto <0.3.14 - Private Key Recovery
CVSS 9.1
CVE-2026-1195 MEDIUM
Mineadmin - Data Authenticity Bypass
CVSS 5.0
CVE-2026-0939 MEDIUM
Rede Itaú for WooCommerce <=5.1.2 - Auth Bypass
CVSS 5.3
CVE-2026-22703 MEDIUM
Sigstore Cosign < 2.6.2 - Data Authenticity Bypass
CVSS 5.5
CVE-2025-52645 LOW
HCL AION is affected by a vulnerability where model packaging and distribution mechanisms may not include sufficient authenticity verification.
CVSS 1.9
CVE-2025-52638 MEDIUM
Multiple security vulnerabilities affect HCL AION
CVSS 5.6
CVE-2025-67298 HIGH
ClasroomIO <0.2.6 - Privilege Escalation
CVSS 8.1
CVE-2025-63910 HIGH
Cohesity TranZman 4.0 Build 14614 - File Upload RCE
CVSS 7.2
CVE-2025-15598 LOW
Dataease SQLBot <1.5.1 - Auth Bypass
CVSS 3.7
CVE-2025-71057 HIGH
D-Link DSL-124 ME_1.00 - Session Hijacking
CVSS 8.2
CVE-2025-14444 MEDIUM
RegistrationMagic <6.0.6.9 - Payment Bypass
CVSS 5.3
CVE-2025-59024 MEDIUM
Recursor - DoS
CVSS 6.5
CVE-2025-15385 CRITICAL
Tecno Boomplay < 7.4.63 - Data Authenticity Bypass
CVSS 9.8
CVE-2025-15154 MEDIUM
Pbootcms < 3.2.12 - Data Authenticity Bypass
CVSS 5.3
CVE-2025-66570 CRITICAL
cpp-httplib <0.27.0 - Info Disclosure
CVSS 10.0
CVE-2025-59700 LOW
Entrust Nshield 5C Firmware < 13.6.12 - Data Authenticity Bypass
CVSS 3.9
CVE-2025-66225 HIGH
OrangeHRM <5.7 - Info Disclosure
CVSS 8.8
CVE-2025-66255 CRITICAL
Dbbroadcast Mozart Next 3000 Firmware - Unrestricted File Upload
CVSS 9.8
CVE-2025-66016 CRITICAL
CGGMP24 <0.6.3 - Info Disclosure
CVE-2025-12752 MEDIUM
PayPal WordPress Plugin <1.1.7 - Info Disclosure
CVSS 5.3
CVE-2025-34337 HIGH
egovframe-common-components <4.3.1 - Info Disclosure
Details
Vulnerabilities 552
Links
MITRE CWE Entry Search this CWE With Exploits