CWE-295— Improper Certificate Validation
The product does not validate, or incorrectly validates, a certificate.— MITRE CWE catalog
1,227 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-295page 16 of 25
- CVE-2023-34143MEDIUMCVSS 5.6EG 5.62023-07-18
Improper Validation of Certificate with Host Mismatch vulnerability in Hitachi Device Manager on Windows, Linux (Device Manager Server, Device Manager Agent, Host Data Collector components) allows Man in the Middle Attack.This issue affect…
- CVE-2023-34410MEDIUMCVSS 5.3EG 5.32023-06-05
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.
- CVE-2023-34414LOWCVSS 3.1EG 3.12023-06-19
The error page for sites with invalid TLS certificates was missing the activation-delay Firefox uses to protect prompts and permission dialogs from attacks that exploit human response time delays. If a malicious page elicited user clicks i…
- CVE-2023-35142HIGHCVSS 8.1EG 8.12023-06-14
Jenkins Checkmarx Plugin 2022.4.3 and earlier disables SSL/TLS validation for connections to the Checkmarx server by default.
- CVE-2023-35721HIGHCVSS 8.8EG 8.12024-05-03
NETGEAR Multiple Routers curl_post Improper Certificate Validation Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded information on affected installations of…
- CVE-2023-35845MEDIUMCVSS 4.7EG 4.72023-09-11
Anaconda 3 2023.03-1-Linux allows local users to disrupt TLS certificate validation by modifying the cacert.pem file used by the installed pip program. This occurs because many files are installed as world-writable on Linux, ignoring umask…
- CVE-2023-3615HIGHCVSS 8.1EG 8.12023-07-17
Mattermost iOS app fails to properly validate the server certificate while initializing the TLS connection allowing a network attacker to intercept the WebSockets connection.
- CVE-2023-3724CRITICALCVSS 9.1EG 9.12023-07-17
If a TLS 1.3 client gets neither a PSK (pre shared key) extension nor a KSE (key share extension) when connecting to a malicious server, a default predictable buffer gets used for the IKM (Input Keying Material) value when generating the s…
- CVE-2023-37397LOWCVSS 3.6EG 3.62024-04-19
IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to obtain or modify sensitive information due to improper encryption of certain data. IBM X-Force ID: 259672.
- CVE-2023-38009MEDIUMCVSS 4.2EG 4.22025-01-26
IBM Cognos Mobile Client 1.1 iOS may be vulnerable to information disclosure through man in the middle techniques due to the lack of certificate pinning.
- CVE-2023-38325HIGHCVSS 7.5EG 7.52023-07-14
The cryptography package before 41.0.2 for Python mishandles SSH certificates that have critical options.
- CVE-2023-38351HIGHCVSS 8.1EG 8.12023-09-19
MiniTool Partition Wizard 12.8 contains an insecure installation mechanism that allows attackers to achieve remote code execution through a man in the middle attack.
- CVE-2023-38352HIGHCVSS 8.1EG 8.12023-09-19
MiniTool Partition Wizard 12.8 contains an insecure update mechanism that allows attackers to achieve remote code execution through a man in the middle attack.
- CVE-2023-38353MEDIUMCVSS 5.9EG 5.92023-09-19
MiniTool Power Data Recovery version 11.6 and before contains an insecure in-app payment system that allows attackers to steal highly sensitive information through a man in the middle attack.
- CVE-2023-38354HIGHCVSS 8.1EG 8.12023-09-19
MiniTool Shadow Maker version 4.1 contains an insecure installation process that allows attackers to achieve remote code execution through a man in the middle attack.
- CVE-2023-38355HIGHCVSS 8.1EG 8.12023-09-19
MiniTool Movie Maker 7.0 contains an insecure installation process that allows attackers to achieve remote code execution through a man in the middle attack.
- CVE-2023-38356HIGHCVSS 8.1EG 8.12023-09-19
MiniTool Power Data Recovery 11.6 contains an insecure installation process that allows attackers to achieve remote code execution through a man in the middle attack.
- CVE-2023-38686CRITICALCVSS 9.3EG 9.32023-08-04
Sydent is an identity server for the Matrix communications protocol. Prior to version 2.5.6, if configured to send emails using TLS, Sydent does not verify SMTP servers' certificates. This makes Sydent's emails vulnerable to interception …
- CVE-2023-39441MEDIUMCVSS 5.9EG 5.92023-08-23
Apache Airflow SMTP Provider before 1.3.0, Apache Airflow IMAP Provider before 3.3.0, and Apache Airflow before 2.7.0 are affected by the Validation of OpenSSL Certificate vulnerability. The default SSL context with SSL library did not …
- CVE-2023-40104HIGHCVSS 7.5EG 7.52024-02-15
In ca-certificates, there is a possible way to read encrypted TLS data due to untrusted cryptographic certificates. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not ne…
- CVE-2023-40256CRITICALCVSS 9.8EG 9.82023-08-11
A vulnerability was discovered in Veritas NetBackup Snapshot Manager before 10.2.0.1 that allowed untrusted clients to interact with the RabbitMQ service. This was caused by improper validation of the client certificate due to misconfigura…
- CVE-2023-41180MEDIUMCVSS 5.9EG 5.92023-09-03
Incorrect certificate validation in InvokeHTTP on Apache NiFi MiNiFi C++ versions 0.13 to 0.14 allows an intermediary to present a forged certificate during TLS handshake negotation. The Disable Peer Verification property of InvokeHTTP was…
- CVE-2023-41991MEDIUMCVSS 5.5EG 9.0⚠ KEV2023-09-21
A certificate validation issue was addressed. This issue is fixed in macOS Ventura 13.6, iOS 16.7 and iPadOS 16.7. A malicious app may be able to bypass signature validation. Apple is aware of a report that this issue may have been activel…
- CVE-2023-42425CRITICALCVSS 9.8EG 9.82023-10-31
An issue in Turing Video Turing Edge+ EVC5FD v.1.38.6 allows remote attacker to execute arbitrary code and obtain sensitive information via the cloud connection components.
- CVE-2023-42532HIGHCVSS 7.5EG 7.52023-11-07
Improper Certificate Validation in FotaAgent prior to SMR Nov-2023 Release1 allows remote attacker to intercept the network traffic including Firmware information.
- CVE-2023-43017HIGHCVSS 8.2EG 8.22024-02-07
IBM Security Verify Access 10.0.0.0 through 10.0.6.1 could allow a privileged user to install a configuration file that could allow remote access. IBM X-Force ID: 266155.
- CVE-2023-43082MEDIUMCVSS 5.9EG 8.62023-11-22
Dell Unity prior to 5.3 contains a 'man in the middle' vulnerability in the vmadapter component. If a customer has a certificate signed by a third-party public Certificate Authority, the vCenter CA could be spoofed by an attacker who can …
- CVE-2023-4499HIGHCVSS 7.5EG 7.52023-10-13
A potential security vulnerability has been identified in the HP ThinUpdate utility (also known as HP Recovery Image and Software Download Tool) which may lead to information disclosure. HP is releasing mitigation for the potential vulnera…
- CVE-2023-45613CRITICALCVSS 9.1EG 6.82023-10-09
In JetBrains Ktor before 2.3.5 server certificates were not verified
- CVE-2023-4586HIGHCVSS 7.4EG 5.32023-10-04
A vulnerability was found in the Hot Rod client. This security issue occurs as the Hot Rod client does not enable hostname validation when using TLS, possibly resulting in a man-in-the-middle (MITM) attack.
- CVE-2023-46724HIGHCVSS 7.5EG 8.62023-11-01
Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4 compiled using `--with-openssl` are vulnerable to a Denial of Service attack against SSL Ce…
- CVE-2023-47537MEDIUMCVSS 4.8EG 4.82024-02-15
An improper certificate validation vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2.6, FortiOS 7.0.0 through 7.0.15, FortiOS 6.4 all versions allows a remote and unauthenticated attacker to perform a Man-in…
- CVE-2023-47700MEDIUMCVSS 5.9EG 5.92024-02-07
IBM SAN Volume Controller, IBM Storwize, IBM FlashSystem and IBM Storage Virtualize 8.6 products could allow a remote attacker to spoof a trusted system that would not be correctly validated by the Storwize server. This could lead to a us…
- CVE-2023-47742MEDIUMCVSS 5.9EG 5.92024-03-03
IBM QRadar Suite Products 1.10.12.0 through 1.10.18.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 could disclose sensitive information using man in the middle techniques due to not correctly enforcing all aspects of certifica…
- CVE-2023-4801HIGHCVSS 7.5EG 7.52023-09-13
An improper certification validation vulnerability in the Insider Threat Management (ITM) Agent for MacOS could be used by an anonymous actor on an adjacent network to establish a man-in-the-middle position between the agent and the ITM se…
- CVE-2023-48052HIGHCVSS 7.4EG 7.42023-11-16
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack.
- CVE-2023-48054HIGHCVSS 7.4EG 7.42023-11-16
Missing SSL certificate validation in localstack v2.3.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack.
- CVE-2023-48427CRITICALCVSS 9.8EG 8.12023-12-12
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). Affected products do not properly validate the certificate of the configured UMC server. This could allow an attacker to intercept credentials that are se…
- CVE-2023-48785MEDIUMCVSS 4.8EG 4.82025-03-14
An improper certificate validation vulnerability [CWE-295] in FortiNAC-F version 7.2.4 and below may allow a remote and unauthenticated attacker to perform a Man-in-the-Middle attack on the HTTPS communication channel between the FortiOS d…
- CVE-2023-49247HIGHCVSS 7.5EG 7.52023-12-06
Permission verification vulnerability in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2023-49250HIGHCVSS 7.3EG 7.32024-02-20
Because the HttpUtils class did not verify certificates, an attacker that could perform a Man-in-the-Middle (MITM) attack on outgoing https connections could impersonate the server. This issue affects Apache DolphinScheduler: before 3.2.0…
- CVE-2023-49312CRITICALCVSS 9.1EG 7.42023-11-26
Precision Bridge PrecisionBridge.exe (aka the thick client) before 7.3.21 allows an integrity violation in which the same license key is used on multiple systems, via vectors involving a Process Hacker memory dump, error message inspection…
- CVE-2023-49567MEDIUMCVSS 6.8EG 6.82024-10-18
A vulnerability has been identified in the Bitdefender Total Security HTTPS scanning functionality where the product incorrectly checks the site's certificate, which allows an attacker to make MITM SSL connections to an arbitrary site. The…
- CVE-2023-49570HIGHCVSS 7.4EG 7.42024-10-18
A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality where the software trusts a certificate issued by an entity that isn't authorized to issue certificates. This occurs when the "Basic Constraints…
- CVE-2023-50178HIGHCVSS 7.4EG 7.42024-07-09
An improper certificate validation vulnerability [CWE-295] in FortiADC 7.4.0, 7.2.0 through 7.2.3, 7.1 all versions, 7.0 all versions, 6.2 all versions, 6.1 all versions and 6.0 all versions may allow a remote and unauthenticated attacker …
- CVE-2023-50179MEDIUMCVSS 4.8EG 4.82024-07-09
An improper certificate validation vulnerability [CWE-295] in FortiADC 7.4.0, 7.2 all versions, 7.1 all versions, 7.0 all versions may allow a remote and unauthenticated attacker to perform a Man-in-the-Middle attack on the communication c…
- CVE-2023-50314MEDIUMCVSS 5.3EG 5.32024-08-14
IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.8 could allow an attacker with access to the network to conduct spoofing attacks. An attacker could exploit this vulnerability using a certificate issued by a trusted author…
- CVE-2023-50315MEDIUMCVSS 5.3EG 5.32024-08-14
IBM WebSphere Application Server 8.5 and 9.0 could allow an attacker with access to the network to conduct spoofing attacks. An attacker could exploit this vulnerability using a certificate issued by a trusted authority to obtain sensitiv…
- CVE-2023-50356MEDIUMCVSS 6.5EG 9.12024-01-31
SSL connections to some LDAP servers are vulnerable to a man-in-the-middle attack due to improper certificate validation in AREAL Topkapi Vision (Server). This allows a remote unauthenticated attacker to gather sensitive information and pr…
- CVE-2023-50454MEDIUMCVSS 5.9EG 5.92023-12-10
An issue was discovered in Zammad before 6.2.0. In several subsystems, SSL/TLS was used to establish connections to external services without proper validation of hostname and certificate authority. This is exploitable by man-in-the-middle…
Map vulnerabilities like CWE-295 to your infrastructure
EchelonGraph correlates every CVE — across CWE-295 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →