Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-347

CWE-347

Improper Verification of Cryptographic Signature

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

686 vulnerabilities with CWE-347

CVE-2021-43569 CRITICAL

Stark Bank .NET ECDSA <1.3.1 - Code Injection

CVE-2021-43568 CRITICAL

Stark Bank Elixir ECDSA <1.0.0 - Code Injection

CVE-2021-39909 MEDIUM

GitLab 11.3.0-14.2.5, 14.3.0-14.3.3, 14.4.0 - CODEOWNERS Approval Bypass via Email Address Verification Lack

CVE-2021-37127 HIGH

Huawei Imanager Neteco 6000 Firmware - Signature Verification Bypass

CVE-2021-41832 HIGH

Apache OpenOffice < 4.1.11 - Cryptographic Signature Verification Bypass

CVE-2021-41831 MEDIUM

Apache OpenOffice < 4.1.11 - Cryptographic Signature Timestamp Manipulation

CVE-2021-41830 HIGH

Apache OpenOffice < 4.1.11 - Cryptographic Signature Verification Bypass

CVE-2021-29108 HIGH

Esri Portal for ArcGIS < 10.9 - Authenticated Privilege Escalation via SAML Assertion XML Signature Wrapping

CVE-2021-37927 CRITICAL

ManageEngine ADManager Plus <= 7110 - Account Takeover via SSO

CVE-2021-31847 HIGH

McAfee Agent < 5.7.4 - DLL Preloading Privilege Escalation via Unprotected Repair Directory

CVE-2021-31841 HIGH

McAfee Agent < 5.7.4 - DLL Sideloading via Unsigned DLL

CVE-2021-34709 MEDIUM

Cisco IOS XR < 7.3.2 - Authenticated Arbitrary Code Execution via Image Verification Bypass

CVE-2021-34708 MEDIUM

Cisco IOS XR < 7.3.2 - Authenticated Arbitrary Code Execution via Image Verification Bypass

CVE-2021-3051 HIGH

Cortex XSOAR <5.5.0-6.2.0 - Info Disclosure

CVE-2021-1849 HIGH

iPadOS < 14.5 - Improper Verification of Cryptographic Signature

CVE-2021-33885 CRITICAL

B. Braun SpaceCom2 < 012U000062 - Unauthenticated Insufficient Verification of Data Authenticity

CVE-2021-34433 HIGH

Eclipse Californium <2.6.4 & 3.0.0-M1-M3 - SSL/TLS Verification Bypass

CVE-2021-34715 MEDIUM

Cisco Expressway and TelePresence VCS - Authenticated Remote Code Execution via Upgrade Package

CVE-2021-3633 HIGH

Lenovo Driver Management < 2.9.0719.1104 - DLL Preloading Privilege Escalation

CVE-2021-36277 HIGH

Dell Command | Update & Alienware Update < 4.3.0 - Authenticated Arbitrary Code Execution via Cryptographic Bypass

CVE-2021-38195 CRITICAL

libsecp256k1 < 0.5.0 - Improper Verification of Cryptographic Signature via R/S Parameter Overflow

CVE-2021-3680 MEDIUM

showdoc < 2.9.7 - Missing Cryptographic Step

CVE-2021-37160 CRITICAL

HMI3 Control Panel Firmware < 7.2.5.7 - Improper Firmware Signature Verification

CVE-2021-22708 HIGH

Schneider-electric Evlink City Evc1s22p4 Firmware < r8_v3.4.0.1 - Signature Verification Bypass

CVE-2021-26100 MEDIUM

FortiMail < 7.0.0 - Unauthenticated Cryptographic Signature Bypass in Identity-Based Encryption

Previous Page 18 of 28 Next

Details

Vulnerabilities 686

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy