CWE-295— Improper Certificate Validation
The product does not validate, or incorrectly validates, a certificate.— MITRE CWE catalog
1,227 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-295page 14 of 25
- CVE-2022-33683MEDIUMCVSS 5.9EG 5.92022-09-23
Apache Pulsar Brokers and Proxies create an internal Pulsar Admin Client that does not verify peer TLS certificates, even when tlsAllowInsecureConnection is disabled via configuration. The Pulsar Admin Client's intra-cluster and geo-replic…
- CVE-2022-33684HIGHCVSS 8.1EG 8.12022-11-04
The Apache Pulsar C++ Client does not verify peer TLS certificates when making HTTPS calls for the OAuth2.0 Client Credential Flow, even when tlsAllowInsecureConnection is disabled via configuration. This vulnerability allows an attacker t…
- CVE-2022-34156MEDIUMCVSS 4.8EG 4.82022-08-16
'Hulu / フールー' App for iOS versions prior to 3.0.81 improperly verifies server certificates, which may allow an attacker to eavesdrop on an encrypted communication via a man-in-the-middle attack.
- CVE-2022-34394LOWCVSS 3.7EG 3.72022-09-28
Dell OS10, version 10.5.3.4, contains an Improper Certificate Validation vulnerability in Support Assist. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to unauthorized access to limited switch conf…
- CVE-2022-34404MEDIUMCVSS 6.5EG 6.02023-02-11
Dell System Update, version 2.0.0 and earlier, contains an Improper Certificate Validation in data parser module. A local attacker with high privileges could potentially exploit this vulnerability, leading to credential theft and/or denia…
- CVE-2022-34469HIGHCVSS 8.1EG 8.12022-12-22
When a TLS Certificate error occurs on a domain protected by the HSTS header, the browser should not allow the user to bypass the certificate error. On Firefox for Android, the user was presented with the option to bypass the error; this c…
- CVE-2022-34831CRITICALCVSS 9.8EG 9.82022-09-14
An issue was discovered in Keyfactor PrimeKey EJBCA before 7.9.0, related to possible inconsistencies in DNS identifiers submitted in an ACME order and the corresponding CSR submitted during finalization. During the ACME enrollment process…
- CVE-2022-34865MEDIUMCVSS 4.8EG 9.12022-08-04
In BIG-IP Versions 15.1.x before 15.1.6.1, 14.1.x before 14.1.5, and all versions of 13.1.x, Traffic Intelligence feeds, which use HTTPS, do not verify the remote endpoint identity, allowing for potential data poisoning. Note: Software ver…
- CVE-2022-35898CRITICALCVSS 9.8EG 9.82023-05-01
OpenText BizManager before 16.6.0.1 does not perform proper validation during the change-password operation. This allows any authenticated user to change the password of any other user, including the Administrator account.
- CVE-2022-36173HIGHCVSS 8.1EG 8.12022-09-12
FreshService macOS Agent < 4.4.0 and FreshServce Linux Agent < 3.4.0 are vulnerable to TLS Man-in-The-Middle via the FreshAgent client and scheduled update service.
- CVE-2022-36881HIGHCVSS 8.1EG 8.12022-07-27
Jenkins Git client Plugin 3.11.0 and earlier does not perform SSH host key verification when connecting to Git repositories via SSH, enabling man-in-the-middle attacks.
- CVE-2022-37437HIGHCVSS 7.4EG 9.82022-08-16
When using Ingest Actions to configure a destination that resides on Amazon Simple Storage Service (S3) in Splunk Web, TLS certificate validation is not correctly performed and tested for the destination. The vulnerability only affects con…
- CVE-2022-3761MEDIUMCVSS 5.9EG 5.92023-10-17
OpenVPN Connect versions before 3.4.0.4506 (macOS) and OpenVPN Connect before 3.4.0.3100 (Windows) allows man-in-the-middle attackers to intercept configuration profile download requests which contains the users credentials
- CVE-2022-38666HIGHCVSS 7.5EG 5.92022-11-15
Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.146 and earlier unconditionally disables SSL/TLS certificate and hostname validation for several features.
- CVE-2022-3913MEDIUMCVSS 5.3EG 5.32023-02-01
Rapid7 Nexpose and InsightVM versions 6.6.82 through 6.6.177 fail to validate the certificate of the update server when downloading updates. This failure could allow an attacker in a privileged position on the network to provide their own …
- CVE-2022-39161MEDIUMCVSS 4.8EG 4.82023-05-03
IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0, and IBM WebSphere Application Server Liberty, when configured to communicate with the Web Server Plug-ins for IBM WebSphere Application Server, could allow an authenticated user to condu…
- CVE-2022-39264HIGHCVSS 8.6EG 8.62022-09-28
nheko is a desktop client for the Matrix communication application. All versions below 0.10.2 are vulnerable homeservers inserting malicious secrets, which could lead to man-in-the-middle attacks. Users can upgrade to version 0.10.2 to pro…
- CVE-2022-39334LOWCVSS 3.9EG 3.92022-11-25
Nextcloud also ships a CLI utility called nextcloudcmd which is sometimes used for automated scripting and headless servers. Versions of nextcloudcmd prior to 3.6.1 would incorrectly trust invalid TLS certificates, which may enable a Man-i…
- CVE-2022-39948MEDIUMCVSS 4.8EG 7.42023-02-16
An improper certificate validation vulnerability [CWE-295] in FortiOS 7.2.0 through 7.2.3, 7.0.0 through 7.0.7, 6.4 all versions, 6.2 all versions, 6.0 all versions and FortiProxy 7.0.0 through 7.0.6, 2.0 all versions, 1.2 all versions…
- CVE-2022-40147HIGHCVSS 7.4EG 7.42022-10-11
A vulnerability has been identified in Industrial Edge Management (All versions < V1.5.1). The affected software does not properly validate the server certificate when initiating a TLS connection. This could allow an attacker to spoof a tr…
- CVE-2022-40620HIGHCVSS 7.7EG 7.72026-01-28
FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, does not properly validate TLS certificates when downloading update packages through its auto-update mechanism. An attacker (suitably positioned on the …
- CVE-2022-41243HIGHCVSS 8.1EG 4.82022-09-21
Jenkins SmallTest Plugin 1.0.4 and earlier does not perform hostname validation when connecting to the configured View26 server that could be abused using a man-in-the-middle attack to intercept these connections.
- CVE-2022-41244HIGHCVSS 8.1EG 4.82022-09-21
Jenkins View26 Test-Reporting Plugin 1.0.7 and earlier does not perform hostname validation when connecting to the configured View26 server that could be abused using a man-in-the-middle attack to intercept these connections.
- CVE-2022-41316MEDIUMCVSS 5.3EG 5.32022-10-12
HashiCorp Vault and Vault Enterprise’s TLS certificate auth method did not initially load the optionally configured CRL issued by the role's CA into memory on startup, resulting in the revocation list not being checked if the CRL has not…
- CVE-2022-41747HIGHCVSS 7.8EG 7.82022-10-10
An improper certification validation vulnerability in Trend Micro Apex One agents could allow a local attacker to load a DLL file with system service privileges on affected installations. Please note: an attacker must first obtain the abil…
- CVE-2022-42131MEDIUMCVSS 4.8EG 4.82022-11-15
Certain Liferay products are affected by: Missing SSL Certificate Validation in the Dynamic Data Mapping module's REST data providers. This affects Liferay Portal 7.1.0 through 7.4.2 and Liferay DXP 7.1 before fix pack 27, 7.2 before fix p…
- CVE-2022-42813CRITICALCVSS 9.8EG 9.82022-11-01
A certificate validation issue existed in the handling of WKWebView. This issue was addressed with improved validation. This issue is fixed in tvOS 16.1, iOS 16.1 and iPadOS 16, macOS Ventura 13, watchOS 9.1. Processing a maliciously craft…
- CVE-2022-42979HIGHCVSS 8.8EG 8.82023-01-06
Information disclosure due to an insecure hostname validation in the RYDE application 5.8.43 for Android and iOS allows attackers to take over an account via a deep link.
- CVE-2022-43705CRITICALCVSS 9.1EG 9.12022-11-27
In Botan before 2.19.3, it is possible to forge OCSP responses due to a certificate verification error. This issue was introduced in Botan 1.11.34 (November 2016).
- CVE-2022-43892LOWCVSS 3.7EG 3.72023-10-17
IBM Security Verify Privilege On-Premises 11.5 does not validate, or incorrectly validates, a certificate which could disclose sensitive information which could aid further attacks against the system. IBM X-Force ID: 240455.
- CVE-2022-45100HIGHCVSS 8.1EG 9.82023-02-01
Dell PowerScale OneFS, versions 8.2.x-9.3.x, contains an Improper Certificate Validation vulnerability. An remote unauthenticated attacker could potentially exploit this vulnerability, leading to a full compromise of the system.
- CVE-2022-45197HIGHCVSS 7.5EG 7.52022-12-25
Slixmpp before 1.8.3 lacks SSL Certificate hostname validation in XMLStream, allowing an attacker to pose as any server in the eyes of Slixmpp.
- CVE-2022-45391HIGHCVSS 7.5EG 7.52022-11-15
Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.143 and earlier globally and unconditionally disables SSL/TLS certificate and hostname validation for the entire Jenkins controller JVM.
- CVE-2022-45419MEDIUMCVSS 6.5EG 6.52022-12-22
If the user added a security exception for an invalid TLS certificate, opened an ongoing TLS connection with a server that used that certificate, and then deleted the exception, Firefox would have kept the connection alive, making it seem …
- CVE-2022-45457HIGHCVSS 7.5EG 4.22023-05-18
Sensitive information disclosure and manipulation due to improper certification validation. The following products are affected: Acronis Agent (Windows) before build 29633, Acronis Cyber Protect 15 (Windows) before build 30984.
- CVE-2022-45458HIGHCVSS 7.5EG 4.22023-05-18
Sensitive information disclosure and manipulation due to improper certification validation. The following products are affected: Acronis Agent (Windows, macOS, Linux) before build 29633, Acronis Cyber Protect 15 (Windows, macOS, Linux) bef…
- CVE-2022-45597CRITICALCVSS 9.8EG 9.82023-03-24
ComponentSpace.Saml2 4.4.0 Missing SSL Certificate Validation. NOTE: the vendor does not consider this a vulnerability because the report is only about use of certificates at the application layer (not the transport layer) and "Certificate…
- CVE-2022-45856MEDIUMCVSS 4.8EG 4.82024-09-10
An improper certificate validation vulnerability [CWE-295] in FortiClientWindows 6.4 all versions, 7.0.0 through 7.0.7, FortiClientMac 6.4 all versions, 7.0 all versions, 7.2.0 through 7.2.4, FortiClientLinux 6.4 all versions, 7.0 all vers…
- CVE-2022-46153HIGHCVSS 8.1EG 8.12022-12-08
Traefik is an open source HTTP reverse proxy and load balancer. In affected versions there is a potential vulnerability in Traefik managing TLS connections. A router configured with a not well-formatted TLSOption is exposed with an empty T…
- CVE-2022-46496MEDIUMCVSS 5.9EG 5.92023-02-06
BTicino Door Entry HOMETOUCH for iOS 1.4.2 was discovered to be missing an SSL certificate.
- CVE-2022-47758CRITICALCVSS 9.8EG 9.82023-04-27
Nanoleaf firmware v7.1.1 and below is missing TLS verification, allowing attackers to execute arbitrary code via a DNS hijacking attack.
- CVE-2022-48186MEDIUMCVSS 6.2EG 6.22023-05-01
A certificate validation vulnerability exists in the Baiying Android application which could lead to information disclosure.
- CVE-2022-48306MEDIUMCVSS 5.7EG 6.82023-02-16
Improper Validation of Certificate with Host Mismatch vulnerability in Gotham Chat IRC helper of Palantir Gotham allows A malicious attacker in a privileged network position could abuse this to perform a man-in-the-middle attack. A success…
- CVE-2022-48307MEDIUMCVSS 6.3EG 3.72023-02-16
It was discovered that the Magritte-ftp was not verifying hostnames in TLS certificates due to a misuse of the javax.net.ssl.SSLSocketFactory API. A malicious attacker in a privileged network position could abuse this to perform a man-in-t…
- CVE-2022-48308MEDIUMCVSS 6.3EG 3.72023-02-16
It was discovered that the sls-logging was not verifying hostnames in TLS certificates due to a misuse of the javax.net.ssl.SSLSocketFactory API. A malicious attacker in a privileged network position could abuse this to perform a man-in-th…
- CVE-2022-48437MEDIUMCVSS 5.3EG 5.32023-04-12
An issue was discovered in x509/x509_verify.c in LibreSSL before 3.6.1, and in OpenBSD before 7.2 errata 001. x509_verify_ctx_add_chain does not store errors that occur during leaf certificate verification, and therefore an incorrect error…
- CVE-2022-4895HIGHCVSS 8.6EG 8.12023-02-28
Improper Certificate Validation vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Analyzer probe component) allows Man in the Middle Attack.This issue affe…
- CVE-2023-0430MEDIUMCVSS 6.5EG 6.52023-06-02
Certificate OCSP revocation status was not checked when verifying S/Mime signatures. Mail signed with a revoked certificate would be displayed as having a valid signature. Thunderbird versions from 68 to 102.7.0 were affected by this bug. …
- CVE-2023-0464HIGHCVSS 7.5EG 7.52023-03-22
A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a …
- CVE-2023-0465MEDIUMCVSS 5.3EG 5.32023-03-28
Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate policies in leaf certificates are silently ignored by OpenSSL and …
Map vulnerabilities like CWE-295 to your infrastructure
EchelonGraph correlates every CVE — across CWE-295 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →