Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-347

CWE-347

Improper Verification of Cryptographic Signature

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

686 vulnerabilities with CWE-347

CVE-2026-20965 HIGH

Windows Admin Center - Privilege Escalation

CVE-2025-67903 MEDIUM

Northern.tech Mender Client < 5.0.4 - Cryptographic Signature Verification Bypass

CVE-2025-41669 HIGH

Phoenix Contact AXC F 1152 - Insufficient Verification of Data Authenticity

CVE-2025-52648 MEDIUM

HCL AION <2.0 - Integrity Compromise

CVE-2025-41767 HIGH

mbs-solutions Universal BACnet Router Firmware < 6.0.1.0 - Remote Code Execution via Update Signature Bypass

CVE-2025-15598 LOW

Dataease SQLBot <1.5.1 - Auth Bypass

CVE-2025-12150 LOW

Keycloak < 26.4.4 - Improper Verification of Cryptographic Signature via WebAuthn Attestation Bypass

CVE-2025-32060 MEDIUM

Nissan Leaf ZE1 - Privilege Escalation

CVE-2025-15469 MEDIUM

OpenSSL 3.5.0-3.5.4 - Improper Verification of Cryptographic Signature via One-Shot Signing Algorithms

CVE-2025-36418 HIGH

IBM ApplinX 11.1 - Privilege Escalation via JWT Token Manipulation

CVE-2025-12007 HIGH

Supermicro MBD-X13SEM-F - Code Injection

CVE-2025-12006 HIGH

Supermicro MBD-X12STW-F - Code Injection

CVE-2025-68925 MEDIUM

Jervis < 2.2 - Improper Verification of Cryptographic Signature

CVE-2025-15444 CRITICAL

Crypt::Sodium::XS < 0.000042 - Improper Verification of Cryptographic Signature via crypto_core_ed25519_is_valid_point

CVE-2025-68972 MEDIUM

GnuPG < 2.4.8 - Improper Verification of Cryptographic Signature via Form Feed Character

CVE-2025-68113 MEDIUM

ALTCHA Libraries - Cryptographic Semantic Binding Flaw via HMAC Signature Reinterpretation

CVE-2025-43522 LOW

macOS Tahoe <26.2 - Info Disclosure

CVE-2025-43521 MEDIUM

macOS < 15.7.3 - Unprotected User Data Exposure via Cryptographic Signature Verification Issue

CVE-2025-59803 MEDIUM

Foxit PDF Editor < 13.2.0.63256 and Reader < 2025.2.0.68868 - Signature Spoofing via Embedded Triggers

CVE-2025-55311 MEDIUM

Foxit PDF <13.2-2025.2 - Code Injection

CVE-2025-65295 HIGH

Aqara Hub <4.1.9_0027-4.3.6_0025 - RCE

CVE-2025-64787 LOW

Adobe Acrobat and Reader < 20.005.30838 and < 25.001.20997 - Security Feature Bypass

CVE-2025-64786 LOW

Adobe Acrobat and Reader < 20.005.30803 - Security Feature Bypass via Cryptographic Signature Verification

CVE-2025-59719 CRITICAL

FortiWeb 7.4.0-7.4.9, 7.6.0-7.6.4, 8.0.0 - Unauthenticated SAML Authentication Bypass via Crafted SAML Response

CVE-2025-59718 CRITICAL KEV

Fortinet FortiOS/FortiProxy/FortiSwitchManager SAML Signature Verification Bypass

Previous Page 5 of 28 Next

Details

Vulnerabilities 686

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy