Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-347

CWE-347

Improper Verification of Cryptographic Signature

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

687 vulnerabilities with CWE-347

CVE-2019-6318 CRITICAL

HP Color LaserJet CM4540 MFP < 2309010_581401 - Arbitrary Code Execution

CVE-2019-1615 MEDIUM

Cisco NX-OS - Authenticated Cryptographic Signature Verification Bypass via Malicious Software Image

CVE-2018-25099 CRITICAL

CryptX < 0.062 - Improper Verification of Cryptographic Signature

CVE-2018-18689 MEDIUM

Multiple PDF Products - Signature Wrapping via /ByteRange and xref Manipulation

CVE-2018-18688 MEDIUM

Multiple PDF Editors - Improper Verification of Cryptographic Signature via Incremental Saving

CVE-2018-12556 MEDIUM

yarnpkg/website <2018-06-05 - Code Injection

CVE-2018-18509 MEDIUM

Thunderbird < 60.5.1 - Improper Verification of Cryptographic Signature

CVE-2018-7340 HIGH

Cisco Duo Network Gateway < 1.2.9 - Authentication Bypass via SAML Signature Manipulation

CVE-2018-5923 CRITICAL

HP Color LaserJet CM4540 MFP Firmware < 2308974_579754 - Arbitrary Code Execution via Improper Signature Verification

CVE-2018-3968 HIGH

U-Boot 2013.07-2014.07 - Cryptographic Signature Verification Bypass via Legacy Image Format

CVE-2018-15587 MEDIUM

GNOME Evolution < 3.28.2 - OpenPGP Signature Spoofing via Crafted Email Attachment

CVE-2018-15586 MEDIUM

Enigmail < 2.0.6 - Cryptographic Signature Spoofing via Multipart HTML Email

CVE-2018-16042 MEDIUM

Adobe Acrobat and Reader DC < 15.006.30457, 15.008.20082-19.008.20081 - Cryptographic Signature Verification Bypass

CVE-2018-16557 HIGH

SIMATIC S7-400 and S7-410 Firmware - Denial of Service via Crafted Packets to Port 102/tcp

CVE-2018-18203 MEDIUM

Subaru StarLink Harman Head Units 2017-2019 - Unauthenticated Firmware Installation via Weak Signature Verification

CVE-2018-1842 LOW

IBM Cognos Analytics 11.0.0.0-11.0.11.0 - Improper Verification of Cryptographic Signature in OIDC id_token

CVE-2018-16253 MEDIUM

axtls < 2.1.3 - Cryptographic Signature Verification Bypass via ASN.1 Metadata

CVE-2018-16150 MEDIUM

axtls < 2.1.3 - Cryptographic Signature Verification Bypass via PKCS#1 v1.5 Excess Data

CVE-2018-16149 MEDIUM

axtls < 2.1.3 - Denial of Service via PKCS#1 v1.5 Signature Verification

CVE-2018-18653 HIGH

Ubuntu Linux - Improper Verification of Cryptographic Signature

CVE-2018-8955 CRITICAL

Bitdefender GravityZone - Remote Code Execution via Installer Filename Manipulation

CVE-2018-15374 MEDIUM

Cisco IOS XE - Privilege Escalation

CVE-2018-16152 HIGH

strongSwan 4.x-5.x - Improper Verification of Cryptographic Signature via Excess Data in PKCS#1 v1.5

CVE-2018-16151 HIGH

strongSwan 4.x-5.x - Cryptographic Signature Verification Bypass via Excess Data in PKCS#1 v1.5

CVE-2018-15836 HIGH

Openswan < 2.6.50.1 - Improper Verification of Cryptographic Signature in PKCS#1 v1.5 RSA Implementation

Previous Page 25 of 28 Next

Details

Vulnerabilities 687

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy