Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-347

CWE-347

Improper Verification of Cryptographic Signature

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

686 vulnerabilities with CWE-347

CVE-2024-1149 HIGH

Snow Inventory Agent <= 6.7.2, <= 6.12.0, <= 6.14.5 - File Manipulation via Snow Update Packages

CVE-2024-21917 CRITICAL

Rockwell Automation FactoryTalk Services Platform < 6.31.00 - Improper Verification of Cryptographic Signature

CVE-2024-21383 LOW

Microsoft Edge Chromium < 121.0.2277.83 - Spoofing via Cryptographic Signature Verification Bypass

CVE-2024-23680 MEDIUM

AWS Encryption SDK for Java 2.0.0-2.2.0 and <1.9.0 - Improper Verification of Cryptographic Signature

CVE-2024-0567 HIGH

GnuTLS >=3.7.0 <3.8.3 - Denial of Service via Certificate Chain Validation

CVE-2024-21669 CRITICAL

Hyperledger Aries Cloud Agent Python 0.7.0-0.10.4 - Cryptographic Signature Verification Bypass

CVE-2023-53951 CRITICAL

Ever Gauzy 0.281.9 - JWT Authentication Bypass via Weak HMAC Secret

CVE-2023-25574 CRITICAL

jupyterhub-ltiauthenticator 1.3.0-1.4.0 - Improper Verification of Cryptographic Signature in LTI13Authenticator

CVE-2023-28806 MEDIUM

Zscaler Client Connector <4.2.0.190 - Info Disclosure

CVE-2023-34435 HIGH

Realtek rtl819x Jungle SDK v3.4.11 - Arbitrary Firmware Update via Boa formUpload

CVE-2023-50228 HIGH

Parallels Desktop < 19.1.0 (54729) - Local Privilege Escalation via Updater Service Cryptographic Signature Bypass

CVE-2023-52538 CRITICAL

Huawei EMUI and HarmonyOS - Incorrect Authorization in HwIms Module

CVE-2023-52043 HIGH

D-Link COVR 1100, 1102, 1103 - Unauthenticated Network Access via WPA-PSK Password Truncation

CVE-2023-44077 CRITICAL

Studio Network Solutions ShareBrowser <7.0 - Info Disclosure

CVE-2023-2030 LOW

GitLab 12.2-16.5.5, 16.6-16.6.3, 16.7-16.7.1 - Improper Verification of Cryptographic Signature

CVE-2023-5347 CRITICAL

Korenix JetNet Series - Improper Verification of Cryptographic Signature

CVE-2023-23436 HIGH

Honor MagicOS < 7.1.0.100 - Improper Verification of Cryptographic Signature

CVE-2023-23435 MEDIUM

Honor MagicOS < 7.1.0.137 - Improper Verification of Cryptographic Signature

CVE-2023-23433 MEDIUM

hihonor nth-an00_firmware < 7.0.0.157 - Improper Verification of Cryptographic Signature

CVE-2023-23432 HIGH

hihonor nth-an00_firmware < 7.0.0.157 - Improper Verification of Cryptographic Signature

CVE-2023-23431 HIGH

Hihonor NTH-AN00 Firmware < 7.0.0.157 - Improper Cryptographic Signature Verification

CVE-2023-50714 MEDIUM

yii2-authclient < 2.2.15 - Improper Authentication via OAuth2 PKCE Implementation

CVE-2023-49646 MEDIUM

Zoom Meeting SDK < 5.16.5 - Authenticated Denial of Service

CVE-2023-41337 MEDIUM

h2o <2.3.0-beta2 - SSRF

CVE-2023-49079 CRITICAL

Misskey <2023.11.1-beta.1 - Impersonation

Previous Page 12 of 28 Next

Details

Vulnerabilities 686

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy