CWE-347
Improper Verification of Cryptographic Signature
The product does not verify, or incorrectly verifies, the cryptographic signature for data.
605 vulnerabilities with CWE-347
CVE-2025-41767
HIGH
UBR - Privilege Escalation
CVSS 7.2
CVE-2026-3706
LOW
Dropbear <=2025.89 - Improper Signature Verification
CVSS 3.7
CVE-2026-28802
Authlib 1.6.5-1.6.6 - Auth Bypass
CVE-2026-29000
CRITICAL
pac4j-jwt <4.5.9/5.7.9/6.3.3 - Auth Bypass
CVSS 10.0
CVE-2026-2746
MEDIUM
SEPPmail Secure Email Gateway <15.0.1 - Info Disclosure
CVSS 5.3
CVE-2026-27445
MEDIUM
SEPPmail Secure Email Gateway <15.0.1 - Auth Bypass
CVSS 5.3
CVE-2025-15598
LOW
Dataease SQLBot <1.5.1 - Auth Bypass
CVSS 3.7
CVE-2026-3338
HIGH
AWS-LC <1.69.0 - Auth Bypass
CVSS 7.5
CVE-2025-12150
LOW
Keycloak - Auth Bypass
CVSS 3.1
CVE-2026-22866
Ethereum Name Service (ENS) <=1.6.2 - Auth Bypass
CVE-2026-2968
LOW
Cesanta Mongoose <=7.20 - Auth Bypass
CVSS 3.7
CVE-2025-32060
MEDIUM
Nissan Leaf ZE1 - Privilege Escalation
CVSS 6.7
CVE-2026-25922
HIGH
authentik <2025.8.6, 2025.10.4, 2025.12.4 - SSRF
CVSS 8.8
CVE-2026-23687
HIGH
SAP NetWeaver Application Server ABAP/ABAP Platform - Privilege Esc...
CVSS 8.8
CVE-2026-1529
HIGH
Org.keycloak Keycloak-services - Signature Verification Bypass
CVSS 8.1
CVE-2026-25793
HIGH
Slackhq Nebula < 1.10.3 - Signature Verification Bypass
CVSS 8.1
CVE-2026-1568
CRITICAL
Rapid7 InsightVM <8.34.0 - Privilege Escalation
CVSS 9.6
CVE-2026-0750
HIGH
Drupal <7.X - Auth Bypass
CVSS 7.5
CVE-2026-1237
juju - Privilege Escalation
CVE-2026-24850
MEDIUM
Crates.io Ml-dsa < 0.1.0-rc.4 - Signature Verification Bypass
CVSS 5.3
CVE-2025-15469
MEDIUM
Openssl < 3.5.5 - Signature Verification Bypass
CVSS 5.5
CVE-2026-24807
Com.github.liuyueyi.media Batik-codec... - Signature Verification Bypass
CVE-2026-22696
Crates.io Dcap-qvl < 0.3.9 - Improper Certificate Validation
CVE-2026-23992
MEDIUM
go-tuf <2.3.1 - Info Disclosure
CVSS 5.9
CVE-2026-23967
HIGH
sm-crypto <0.3.14 - Signature Malleability
CVSS 7.5
Details
Vulnerabilities
605