Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-347

CWE-347

Improper Verification of Cryptographic Signature

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

686 vulnerabilities with CWE-347

CVE-2023-20568 MEDIUM

Intel Radeon RX Vega M Firmware < 23.10.01.46 - Authenticated Arbitrary Code Execution via Unverified Driver Signature

CVE-2023-20567 MEDIUM

Intel Radeon RX Vega M Firmware < 23.10.01.46 - Arbitrary Code Execution via Improper Signature Verification

CVE-2023-5747 HIGH

HanwhaVision Wave Server Software - Remote Code Execution via Command Injection

CVE-2023-47122 MEDIUM

sigstore gitsign 0.6.0-0.7.x - Improper Verification of Cryptographic Signature via Rekor API

CVE-2023-34058 HIGH

VMware Tools - Privilege Escalation

CVE-2023-46234 MEDIUM

browserify-sign - Signature Forgery

CVE-2023-28804 HIGH

Zscaler Client Connector <1.4.0.105 - Code Injection

CVE-2023-28796 HIGH

Zscaler Client Connector <1.3.1.6 - Code Injection

CVE-2023-46324 HIGH

free5GC udm <1.2.0 - Invalid Curve Attack

CVE-2023-43611 HIGH

BIG-IP Edge Client Installer - Privilege Escalation

CVE-2023-43660 MEDIUM

warpgate < 0.8.1 - Authentication Bypass via Unsigned SSH Key Offer

CVE-2023-42811 MEDIUM

aes-gcm 0.10.0-0.10.2 - Improper Verification of Cryptographic Signature in decrypt_in_place_detached

CVE-2023-42806 MEDIUM

Hydra < 0.13.0 - Cryptographic Signature Verification Bypass via Unsigned CID

CVE-2023-20236 MEDIUM

Cisco IOS XR - Privilege Escalation

CVE-2023-20135 MEDIUM

Cisco IOS XR 7.5.2-7.6 - Authenticated Remote Code Execution via ISO Image Verification Race Condition

CVE-2023-41764 MEDIUM

Microsoft 365 Apps and Office - Spoofing via Improper Cryptographic Signature Verification

CVE-2023-40727 HIGH

QMS Automotive <V12.39 - Code Injection

CVE-2023-41744 HIGH

Acronis Agent and Cyber Protect - Local Privilege Escalation via Unsigned Library Loading

CVE-2023-28801 CRITICAL

Zscaler Admin UI <6.2 - Privilege Escalation

CVE-2023-36811 MEDIUM

borgbackup < 1.2.5 - Cryptographic Signature Spoofing via Archive Forgery

CVE-2023-20266 MEDIUM

Cisco Emergency Responder, Unified CM, Unity Connection - Privilege Escalation via Crafted Upgrade File

CVE-2023-41037 MEDIUM

OpenPGP.js <5.9.0 - Info Disclosure

CVE-2023-23773 HIGH

Motorola EBTS/MBTS Base Radio Firmware - Authenticated Arbitrary Code Execution via Firmware Update

CVE-2023-23772 HIGH

Motorola MBTS Site Controller Firmware - Authenticated Arbitrary Code Execution via Unsigned Firmware Update

CVE-2023-40178 MEDIUM

node-saml < 4.0.5 - Insufficient Session Expiration via LogoutRequest Reuse

Previous Page 13 of 28 Next

Details

Vulnerabilities 686

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy