CWE-345

Insufficient Verification of Data Authenticity

Parent: CWE-693 - Protection Mechanism Failure

The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.

552 vulnerabilities with CWE-345
CVE-2023-5747 HIGH
Hanwhavision Wave Server Software - Signature Verification Bypass
CVSS 7.2
CVE-2023-5548 LOW
Moodle - Cache Poisoning via File Serving Endpoints
CVSS 3.3
CVE-2023-4699 CRITICAL
Mitsubishielectric Fx3u-32mt/es Firmware - Missing Authentication
CVSS 10.0
CVE-2023-5482 HIGH
Google Chrome < 119.0.6045.105 - Data Authenticity Bypass
CVSS 8.8
CVE-2023-41898 HIGH
Home-assistant Home Assistant Companion < 2023.9.2 - Code Injection
CVSS 8.6
CVE-2023-41896 HIGH
Home-assistant < 2023.8.0 - Data Authenticity Bypass
CVSS 7.1
CVE-2023-43800 HIGH
Arduino Create Agent <1.3.3 - Privilege Escalation
CVSS 7.3
CVE-2023-38552 HIGH
Node.js - Info Disclosure
CVSS 7.5
CVE-2023-43666 MEDIUM
Apache InLong <1.9.0 - Info Disclosure
CVSS 6.5
CVE-2023-42782 MEDIUM
Fortinet Fortianalyzer < 6.2.12 - Data Authenticity Bypass
CVSS 5.3
CVE-2023-5450 HIGH
F5 Big-ip Access Policy Manager < 7.2.4.5 - Data Authenticity Bypass
CVSS 7.3
CVE-2023-5366 HIGH
Openvswitch < 2023-02-28 - Data Authenticity Bypass
CVSS 7.1
CVE-2023-39347 HIGH
Cilium < 1.12.14 - Data Authenticity Bypass
CVSS 7.6
CVE-2023-43636 HIGH
EVE OS - Info Disclosure
CVSS 8.8
CVE-2023-26141 HIGH
sidekiq <7.1.3 - DoS
CVSS 7.5
CVE-2023-20236 MEDIUM
Cisco IOS XR - Privilege Escalation
CVSS 6.7
CVE-2023-4589 CRITICAL
Delinea Secret Server <10.9.000002 - Code Injection
CVSS 9.1
CVE-2023-35719 MEDIUM
Zohocorp Manageengine Adselfservice Plus - Data Authenticity Bypass
CVSS 6.8
CVE-2023-35906 MEDIUM
IBM Aspera Faspex 5.0.5 - Auth Bypass
CVSS 5.3
CVE-2023-41045 LOW
Graylog - Info Disclosure
CVSS 3.7
CVE-2023-38831 HIGH KEV
WinRAR CVE-2023-38831 Exploit
CVSS 7.8
CVE-2023-22955 HIGH
Audiocodes 445hd Firmware < 3.4.4.1000 - Data Authenticity Bypass
CVSS 7.8
CVE-2023-36541 HIGH
Zoom Desktop Client for Windows <5.14.5 - Privilege Escalation
CVSS 8.0
CVE-2023-4177 LOW
Empowerid < 7.205.0.0 - Information Disclosure
CVSS 2.6
CVE-2023-36139 CRITICAL
PHPJabbers Cleaning Business Software 1.0 - RCE
CVSS 9.8
Details
Vulnerabilities 552
Links
MITRE CWE Entry Search this CWE With Exploits