Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-347

CWE-347

Improper Verification of Cryptographic Signature

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

686 vulnerabilities with CWE-347

CVE-2025-33074 HIGH

Microsoft Azure Functions - Code Injection

CVE-2025-2866 MEDIUM

LibreOffice 24.8.0.1-24.8.5.99 & 25.2.0-25.2.1 PDF Signature Spoofing

CVE-2025-2764 HIGH

CarlinKit CPC200-CCPA - Unauthenticated Remote Code Execution via update.cgi Cryptographic Signature Bypass

CVE-2025-2763 MEDIUM

CarlinKit CPC200-CCPA - Unauthenticated Code Execution via USB Update Package

CVE-2025-43903 MEDIUM

Poppler < 25.04.0 - Improper Verification of Cryptographic Signature

CVE-2025-20178 MEDIUM

Cisco Secure Network Analytics - RCE

CVE-2025-29915 HIGH

Suricata < 7.0.9 - Improper Verification of Cryptographic Signature via AF_PACKET Defrag Option

CVE-2025-27813 HIGH

MSI Center <2.0.52.0 - Privilege Escalation

CVE-2025-31489 HIGH

MinIO - Incomplete Signature Validation for Unsigned-Trailer Uploads

CVE-2025-31335 MEDIUM

OpenSAML C++ < 3.3.1 - Signed SAML Message Forgery

CVE-2025-29775 CRITICAL

xml-crypto < 6.0.1, 3.0.0-3.2.1, < 2.1.6 - Cryptographic Signature Verification Bypass

CVE-2025-29774 CRITICAL

xml-crypto < 6.0.1, 3.0.0-3.2.0, < 2.1.6 - Cryptographic Signature Verification Bypass

CVE-2025-25292 CRITICAL

ruby-saml <1.12.4,1.18.0 - Auth Bypass

CVE-2025-25291 CRITICAL

ruby-saml <1.12.4,1.18.0 - Auth Bypass

CVE-2025-20143 MEDIUM

Cisco IOS XR - Privilege Escalation

CVE-2025-2233 HIGH

Samsung SmartThings < 0.55.5 - Unauthenticated Authentication Bypass via Cryptographic Signature Verification

CVE-2025-27773 HIGH

SimpleSAMLphp saml2 < 4.17.0 and 5.0.0-alpha.1-5.0.0-alpha.20 - Signature Confusion Attack via HTTPRedirect Binding

CVE-2025-24043 HIGH

Windbg < 1.2502.25002.0 - Remote Code Execution via Cryptographic Signature Verification Bypass

CVE-2025-20206 HIGH

Cisco Secure Client - DLL Hijacking

CVE-2025-27670 CRITICAL

Vasion Print < 20.0.1923 and Virtual Appliance < 22.0.843 - Insufficient Signature Validation

CVE-2025-27498 MEDIUM

ascon_aead < 0.4.3 - Improper Verification of Cryptographic Signature

CVE-2025-24800 CRITICAL

ismp-grandpa < 15.0.1 - Improper Verification of Cryptographic Signature

CVE-2025-23369 HIGH

GitHub Enterprise Server < 3.12.14 - Improper Verification of Cryptographic Signature

CVE-2025-23206 HIGH

AWS Cloud Development Kit < 2.177.0 - Improper Certificate Validation in OIDC Custom Resource Provider

CVE-2024-36334 HIGH

Amd Radeon™ RX 7000 Series Graphics Products - Improper Verification of Cryptographic Signature

Previous Page 8 of 28 Next

Details

Vulnerabilities 686

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy