Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-347

CWE-347

Improper Verification of Cryptographic Signature

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

686 vulnerabilities with CWE-347

CVE-2024-41258 MEDIUM

filestash < 0.4 - Man-in-the-Middle Attack via Insecure SSH Host Key Verification

CVE-2024-41254 MEDIUM

litestream < 0.3.13 - Man-in-the-Middle Attack via Insecure SSH Host Key Verification

CVE-2024-5912 MEDIUM

Palo Alto Networks Cortex XDR - Code Injection

CVE-2024-38069 HIGH

Windows Enroll Engine - Privilege Escalation

CVE-2024-6580 MEDIUM

IPWorks SSH <24.0.8945 - Path Traversal

CVE-2024-20892 MEDIUM

Samsung Android - Improper Verification of Cryptographic Signature in FilterProvider

CVE-2024-37532 HIGH

IBM WebSphere Application Server 8.5/9.0 - Identity Spoofing via Cryptographic Validation Flaw

CVE-2024-36277 MEDIUM

FreeFrom - the nostr client App < 1.3.5 - Improper Verification of Cryptographic Signature

CVE-2024-21988 MEDIUM

StorageGRID <11.7.0.9, 11.8.0.5 - Info Disclosure

CVE-2024-37886 MEDIUM

Nextcloud user_oidc < 1.3.5 - Improper Verification of Cryptographic Signature

CVE-2024-32911 CRITICAL

Android - Remote Privilege Escalation via Improper Cryptographic Algorithm

CVE-2024-37568 HIGH

Authlib < 1.3.1 - Algorithm Confusion in JWT Verification

CVE-2024-2451 MEDIUM

TeamViewer <15.54 - Privilege Escalation

CVE-2024-1721 MEDIUM

HYPR Passwordless < 9.1 - Malicious Software Update via Improper Cryptographic Signature Verification

CVE-2024-27244 MEDIUM

Zoom Workplace VDI App < - Privilege Escalation

CVE-2024-34358 MEDIUM

TYPO3 <9.5.48 ELTS, <10.4.45 ELTS, <11.5.37 LTS, <12.4.15 LTS, <13....

CVE-2024-32962 CRITICAL

xml-crypto 4.0.0-5.9.9 - Improper Verification of Cryptographic Signature via KeyInfo Element

CVE-2024-23480 HIGH

Zscaler Client Connector <4.2 - RCE

CVE-2024-27247 MEDIUM

Zoom Desktop Client for macOS <5.17.10 - Privilege Escalation

CVE-2024-24694 MEDIUM

Zoom Desktop Client for Windows <5.17.10 - Privilege Escalation

CVE-2024-26228 HIGH

Windows Cryptographic Services - Security Feature Bypass

CVE-2024-26194 HIGH

Windows 10/11, Server 2008-2022 Secure Boot Bypass via Cryptographic Verification Flaw

CVE-2024-2307 MEDIUM

Red Hat Enterprise Linux 8 and 9 - Improper Verification of Cryptographic Signature

CVE-2024-21491 MEDIUM

svix-webhooks < 1.17.0 - Authentication Bypass via Signature Length Mismatch

CVE-2024-1150 HIGH

Snow Software Inventory Agent <7.3.1 - Info Disclosure

Previous Page 11 of 28 Next

Details

Vulnerabilities 686

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy