Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-347

CWE-347

Improper Verification of Cryptographic Signature

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

686 vulnerabilities with CWE-347

CVE-2023-39393 HIGH

Huawei EMUI and HarmonyOS - Insecure Signature Validation in ServiceWifiResources

CVE-2023-39392 HIGH

Huawei EMUI and HarmonyOS - Insecure Signature Validation in OsuLogin Module

CVE-2023-40012 MEDIUM

uthenticode < 2.0.0 - Missing Extended Key Usage Validation in Certificate Check

CVE-2023-39969 CRITICAL

uthenticode 1.0.9 - Improper Verification of Cryptographic Signature via Full-File Hashing

CVE-2023-39211 HIGH

Zoom Desktop Client <5.15.5 - Info Disclosure

CVE-2023-38418 HIGH

BIG-IP Edge Client Installer - Privilege Escalation

CVE-2023-3347 MEDIUM

Samba 4.17.0-4.17.9 - Improper Enforcement of Message Integrity in SMB2 Packet Signing

CVE-2023-33768 MEDIUM

Belkin Wemo Smart Plug WSP080 <1.2 - DoS

CVE-2023-35373 MEDIUM

Mono 6.12.0 - Improper Verification of Cryptographic Signature

CVE-2023-32449 HIGH

Dell PowerStore < 3.5.0.0-2050321 - Improper Verification of Cryptographic Signature

CVE-2023-34120 HIGH

Zoom <5.14.0 - Privilege Escalation

CVE-2023-28602 LOW

Zoom for Windows <5.13.5 - Code Injection

CVE-2023-33959 HIGH

notaryproject/notation-go < 1.0.0-rc.6 - Improper Verification of Cryptographic Signature

CVE-2023-34205 CRITICAL

Moov signedxml < 1.1.0 - Signature Verification Bypass via Signature Wrapping

CVE-2023-33185 MEDIUM

django-ses < 3.5.0 - Improper Verification of Cryptographic Signature in SESEventWebhookView

CVE-2023-25934 MEDIUM

Dell Elastic Cloud Storage < 3.8.0.2 - Improper Verification of Cryptographic Signature

CVE-2023-1204 MEDIUM

GitLab 10.1-15.10.7, 15.11-15.11.6, 16.0-16.0.1 - Cryptographic Signature Verification Bypass

CVE-2023-28228 MEDIUM

Windows 10 1507-22H2 and Windows 11 21H2-22H2 - Spoofing via Cryptographic Signature Verification

CVE-2023-28226 MEDIUM

Windows 10 1507-22H2 and Windows 11 21H2-22H2 - Security Feature Bypass via Cryptographic Signature Verification

CVE-2023-28818 MEDIUM

Veritas NetBackup IT Analytics <11.2.0 - Code Injection

CVE-2023-28610 CRITICAL

OMICRON StationGuard/StationScout <2.21 - RCE

CVE-2023-28113 MEDIUM

russh <0.36.2-0.37.1 - Info Disclosure

CVE-2023-20940 HIGH

Android 13 - Local Privilege Escalation via Boot Partition Replacement

CVE-2023-25718 CRITICAL

ConnectWise Control < 22.9.10032 - Improper Verification of Cryptographic Signature

CVE-2023-23940 MEDIUM

OpenZeppelin Contracts for Cairo - Code Injection

Previous Page 14 of 28 Next

Details

Vulnerabilities 686

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy