Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-347

CWE-347

Improper Verification of Cryptographic Signature

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

686 vulnerabilities with CWE-347

CVE-2021-1366 HIGH

Cisco AnyConnect Secure Mobility Client < 4.9.05042 - Authenticated DLL Hijacking via IPC Channel

CVE-2021-3033 CRITICAL

Palo Alto Networks Prisma Cloud <20.12 - Auth Bypass

CVE-2021-1244 MEDIUM

Cisco IOS XR < 7.0.12 - Authenticated Unsigned Code Execution during Boot Process

CVE-2021-1136 MEDIUM

Cisco NCS540L - Authenticated Code Execution

CVE-2021-21239 MEDIUM

PySAML2 <6.5.0 - Improper Signature Verification

CVE-2021-21238 MEDIUM

PySAML2 < 6.5.0 - Improper Verification of Cryptographic Signature via XML Signature Wrapping

CVE-2020-36843 MEDIUM

EdDSA-Java <0.3.0 - Signature Malleability

CVE-2020-22659 HIGH

Ruckus APs and SmartZone Controllers - Unauthorized Firmware Signature Injection

CVE-2020-22653 CRITICAL

Ruckus APs and SmartZone Controllers - Unauthorized Firmware Signature Injection

CVE-2020-36563 MEDIUM

XML Digital Signatures - Info Disclosure

CVE-2020-35169 CRITICAL

Dell BSAFE <4.1.5-4.5.2 - Info Disclosure

CVE-2020-25166 HIGH

B. Braun SpaceCom < L81 and Data module compactplus A10-A11 - Improper Firmware Signature Verification

CVE-2020-16156 HIGH

Comprehensive Perl Archive Network - Signature Verification Bypass

CVE-2020-16154 HIGH

App::cpanminus <1.7044 - Signature Verification Bypass

CVE-2020-36285 HIGH

Union Pay <= 3.3.12 - Improper Verification of Cryptographic Signature via Crafted Authentication Code

CVE-2020-36284 HIGH

Union Pay < 3.4.93.4.9 - Improper Verification of Cryptographic Signature via NULL Secret Key

CVE-2020-23533 HIGH

Union Pay < 1.2.0 - Improper Verification of Cryptographic Signature via Crafted Authentication Code

CVE-2020-23967 HIGH

Dr.Web Security Space <12 - Privilege Escalation

CVE-2020-27540 CRITICAL

Rostelecom CS-C2SHW 5.0.082.1 - Command Injection

CVE-2020-26290 CRITICAL

Dex < 2.27.0 - Cryptographic Signature Verification Bypass via XML Encoding Issue

CVE-2020-11093 HIGH

Hyperledger Indy <1.12.4 - Privilege Escalation

CVE-2020-28086 HIGH

password-store < 1.7.3 - Improper Verification of Cryptographic Signature

CVE-2020-26122 HIGH

Inspur M5 Server Firmware - Remote Code Execution via BMC Firmware Signature Verification Bypass

CVE-2020-26244 MEDIUM

Python oic <1.2.1 - Info Disclosure

CVE-2020-29438 MEDIUM

Tesla Model X <2020-11-23 - Code Injection

Previous Page 20 of 28 Next

Details

Vulnerabilities 686

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy