CWE-295— Improper Certificate Validation
The product does not validate, or incorrectly validates, a certificate.— MITRE CWE catalog
1,227 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-295page 17 of 25
- CVE-2023-50949MEDIUMCVSS 5.9EG 5.92024-04-11
IBM QRadar SIEM 7.5 could allow an unauthorized user to perform unauthorized actions due to improper certificate validation. IBM X-Force ID: 275706.
- CVE-2023-51634HIGHCVSS 7.5EG 7.52024-11-22
NETGEAR RAX30 Improper Certificate Validation Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded information on affected installations of NETGEAR RAX30 route…
- CVE-2023-51662HIGHCVSS 7.5EG 6.02023-12-22
The Snowflake .NET driver provides an interface to the Microsoft .NET open source software framework for developing applications. Snowflake recently received a report about a vulnerability in the Snowflake Connector .NET where the checks a…
- CVE-2023-51837CRITICALCVSS 9.8EG 9.82024-01-30
Ylianst MeshCentral 1.1.16 is vulnerable to Missing SSL Certificate Validation.
- CVE-2023-5422CRITICALCVSS 9.1EG 8.72023-10-16
The functions to fetch e-mail via POP3 or IMAP as well as sending e-mail via SMTP use OpenSSL for static SSL or TLS based communication. As the SSL_get_verify_result() function is not used the certificated is trusted always and it can not…
- CVE-2023-5554CRITICALCVSS 9.8EG 4.82023-10-12
Lack of TLS certificate verification in log transmission of a financial module within LINE client for iOS prior to 13.16.0.
- CVE-2023-5594HIGHCVSS 8.6EG 7.52023-12-21
Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate signed using the MD5 or SHA1 algorithm as trusted.
- CVE-2023-5909HIGHCVSS 7.5EG 7.52023-11-30
KEPServerEX does not properly validate certificates from clients which may allow unauthenticated users to connect.
- CVE-2023-6043HIGHCVSS 7.8EG 7.82024-01-19
A privilege escalation vulnerability was reported in Lenovo Vantage that could allow a local attacker to bypass integrity checks and execute arbitrary code with elevated privileges.
- CVE-2023-6055HIGHCVSS 7.4EG 7.42024-10-18
A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality where the software fails to properly validate website certificates. Specifically, if a site certificate lacks the "Server Authentication" specif…
- CVE-2023-6056HIGHCVSS 7.4EG 7.42024-10-18
A vulnerability has been discovered in Bitdefender Total Security HTTPS scanning functionality that results in the improper trust of self-signed certificates. The product is found to trust certificates signed with the RIPEMD-160 hashing al…
- CVE-2023-6057HIGHCVSS 7.4EG 7.32024-10-18
A vulnerability has been discovered in Bitdefender Total Security HTTPS scanning functionality that results in the improper trust of certificates issued using the DSA signature algorithm. The product does not properly check the certificate…
- CVE-2023-6058MEDIUMCVSS 6.8EG 6.82024-10-18
A vulnerability has been identified in Bitdefender Safepay's handling of HTTPS connections. The issue arises when the product blocks a connection due to an untrusted server certificate but allows the user to add the site to exceptions, res…
- CVE-2023-6680HIGHCVSS 8.1EG 7.42023-12-15
An improper certificate validation issue in Smartcard authentication in GitLab EE affecting all versions from 11.6 prior to 16.4.4, 16.5 prior to 16.5.4, and 16.6 prior to 16.6.2 allows an attacker to authenticate as another user given the…
- CVE-2024-0042HIGHCVSS 7.8EG 5.62024-05-07
In TBD of TBD, there is a possible confusion of OEM and DRM certificates due to improperly used crypto. This could lead to local bypass of DRM content protection with no additional execution privileges needed. User interaction is not neede…
- CVE-2024-0853MEDIUMCVSS 5.3EG 5.32024-02-03
curl inadvertently kept the SSL session ID for connections in its cache even when the verify status (*OCSP stapling*) test failed. A subsequent transfer to the same hostname could then succeed if the session ID cache was still fresh, which…
- CVE-2024-10444HIGHCVSS 7.5EG 7.52025-03-19
Improper certificate validation vulnerability in the LDAP utilities in Synology DiskStation Manager (DSM) before 7.1.1-42962-8, 7.2.1-69057-7 and 7.2.2-72806-3 allows man-in-the-middle attackers to hijack the authentication of administrato…
- CVE-2024-10445MEDIUMCVSS 4.3EG 4.32025-03-19
Improper certificate validation vulnerability in the update functionality in Synology BeeStation OS (BSM) before 1.1-65374 and Synology DiskStation Manager (DSM) before 6.2.4-25556-8, 7.1.1-42962-7, 7.2-64570-4, 7.2.1-69057-6 and 7.2.2-728…
- CVE-2024-1052HIGHCVSS 8.0EG 8.02024-02-05
Boundary and Boundary Enterprise (“Boundary”) is vulnerable to session hijacking through TLS certificate tampering. An attacker with privileges to enumerate active or pending sessions, obtain a private key pertaining to a session, and …
- CVE-2024-11621HIGHCVSS 8.8EG 8.82025-02-10
Missing certificate validation in Devolutions Remote Desktop Manager on macOS, iOS, Android, Linux allows an attacker to intercept and modify encrypted communications via a man-in-the-middle attack. Versions affected are : Remote Desktop …
- CVE-2024-12174LOWCVSS 2.7EG 2.72024-12-09
An Improper Certificate Validation vulnerability exists in Tenable Security Center where an authenticated, privileged attacker could intercept email messages sent from Security Center via a rogue SMTP server.
- CVE-2024-1351HIGHCVSS 8.8EG 8.82024-03-07
Under certain configurations of --tlsCAFile and tls.CAFile, MongoDB Server may skip peer certificate validation which may result in untrusted connections to succeed. This may effectively reduce the security guarantees provided by TLS and o…
- CVE-2024-13956MEDIUMCVSS 6.7EG 6.72025-05-22
SSL Verification Bypass vulnerabilities exist in ASPECT if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.*; NEXUS Series: through 3.*; MATRIX Series: through 3.*.
- CVE-2024-13990CRITICALCVSS 9.3EG 9.32025-09-19
MicroWorld eScan AV's update mechanism failed to ensure authenticity and integrity of updates: update packages were delivered and accepted without robust cryptographic verification. As a result, an on-path attacker could perform a man-in-t…
- CVE-2024-20080CRITICALCVSS 9.8EG 9.82024-07-01
In gnss service, there is a possible escalation of privilege due to improper certificate validation. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for explo…
- CVE-2024-20385MEDIUMCVSS 5.9EG 5.92024-10-02
A vulnerability in the SSL/TLS implementation of Cisco Nexus Dashboard Orchestrator (NDO) could allow an unauthenticated, remote attacker to intercept sensitive information from an affected device. This vulnerability exists becaus…
- CVE-2024-2048HIGHCVSS 8.1EG 8.12024-03-04
Vault and Vault Enterprise (“Vault”) TLS certificate auth method did not correctly validate client certificates when configured with a non-CA certificate as trusted certificate. In this configuration, an attacker may be able to craft a…
- CVE-2024-21543HIGHCVSS 7.1EG 7.12024-12-13
Versions of the package djoser before 2.3.0 are vulnerable to Authentication Bypass when the authenticate() function fails. This is because the system falls back to querying the database directly, granting access to users with valid creden…
- CVE-2024-22030HIGHCVSS 8.0EG 8.02024-10-16
A vulnerability has been identified within Rancher that can be exploited in narrow circumstances through a man-in-the-middle (MITM) attack. An attacker would need to have control of an expired domain or execute a DNS spoofing/hijacking …
- CVE-2024-23273MEDIUMCVSS 4.3EG 4.32024-03-08
This issue was addressed through improved state management. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. Private Browsing tabs may be accessed without authentication.
- CVE-2024-2379MEDIUMCVSS 6.3EG 6.32024-03-27
libcurl skips the certificate verification for a QUIC connection under certain conditions, when built to use wolfSSL. If told to use an unknown/bad cipher or curve, the error path accidentally skips the verification and returns OK, thus ig…
- CVE-2024-23928MEDIUMCVSS 6.5EG 8.12025-01-31
This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded information on affected installations of Pioneer DMH-WT7600NEX devices. Authentication is not required to exploit this vulnerability. The speci…
- CVE-2024-23970MEDIUMCVSS 6.5EG 6.52025-01-31
This vulnerability allows network-adjacent attackers to compromise transport security on affected installations of ChargePoint Home Flex charging stations. Authentication is not required to exploit this vulnerability. The specific flaw ex…
- CVE-2024-25053MEDIUMCVSS 5.9EG 5.92024-06-28
IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, and 12.0.2 is vulnerable to improper certificate validation when using the IBM Planning Analytics Data Source Connection. This could allow an attacker to spoof a …
- CVE-2024-25140CRITICALCVSS 9.8EG 9.82024-02-06
A default installation of RustDesk 1.2.3 on Windows places a WDKTestCert certificate under Trusted Root Certification Authorities with Enhanced Key Usage of Code Signing (1.3.6.1.5.5.7.3.3), valid from 2023 until 2033. This is potentially …
- CVE-2024-25141CRITICALCVSS 9.1EG 9.12024-02-20
When ssl was enabled for Mongo Hook, default settings included "allow_insecure" which caused that certificates were not validated. This was unexpected and undocumented. Users are recommended to upgrade to version 4.0.0, which fixes this i…
- CVE-2024-25642HIGHCVSS 7.4EG 7.42024-02-13
Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/mod…
- CVE-2024-27323HIGHCVSS 7.5EG 7.52024-04-01
PDF-XChange Editor Updater Improper Certificate Validation Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interactio…
- CVE-2024-27440MEDIUMCVSS 4.8EG 4.82024-03-13
The Toyoko Inn official App for iOS versions prior to 1.13.0 and Toyoko Inn official App for Android versions prior 1.3.14 don't properly verify server certificates, which allows a man-in-the-middle attacker to spoof servers and obtain sen…
- CVE-2024-28021HIGHCVSS 7.4EG 8.02024-06-11
A vulnerability exists in the FOXMAN-UN/UNEM server that affects the message queueing mechanism’s certificate validation. If exploited an attacker could spoof a trusted entity causing a loss of confidentiality and integrity.
- CVE-2024-28067MEDIUMCVSS 5.3EG 5.32024-07-09
A vulnerability in Samsung Exynos Modem 5300 allows a Man-in-the-Middle (MITM) attacker to downgrade the security mode of packets going to the victim, enabling the attacker to send messages to the victim in plaintext.
- CVE-2024-28161MEDIUMCVSS 5.3EG 5.32024-03-06
In Jenkins Delphix Plugin 3.0.1, a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower (DCT) connections is disabled by default.
- CVE-2024-28162MEDIUMCVSS 4.2EG 4.22024-03-06
In Jenkins Delphix Plugin 3.0.1 through 3.1.0 (both inclusive) a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower (DCT) connections fails to take effect until Jenkins is restarted …
- CVE-2024-28872HIGHCVSS 8.9EG 8.92024-07-11
The TLS certificate validation code is flawed. An attacker can obtain a TLS certificate from the Stork server and use it to connect to the Stork agent. Once this connection is established with the valid certificate, the attacker can send m…
- CVE-2024-29050HIGHCVSS 8.4EG 8.42024-04-09
Windows Cryptographic Services Remote Code Execution Vulnerability
- CVE-2024-29072HIGHCVSS 8.2EG 8.22024-05-28
A privilege escalation vulnerability exists in the Foxit Reader 2024.2.0.25138. The vulnerability occurs due to improper certification validation of the updater executable before executing it. A low privilege user can trigger the update ac…
- CVE-2024-29171MEDIUMCVSS 5.9EG 5.92025-02-12
Dell BSAFE SSL-J, versions prior to 6.6 and versions 7.0 through 7.2, contains an Improper certificate verification vulnerability. A remote attacker could potentially exploit this vulnerability, leading to information disclosure.
- CVE-2024-29733LOWCVSS 2.7EG 2.72024-04-21
Improper Certificate Validation vulnerability in Apache Airflow FTP Provider. The FTP hook lacks complete certificate validation in FTP_TLS connections, which can potentially be leveraged. Implementing proper certificate validation by pas…
- CVE-2024-29887HIGHCVSS 7.4EG 7.42024-03-27
Serverpod is an app and web server, built for the Flutter and Dart ecosystem. This bug bypassed the validation of TSL certificates on all none web HTTP clients in the `serverpod_client` package. Making them susceptible to a man in the midd…
- CVE-2024-30020HIGHCVSS 8.1EG 8.12024-05-14
Windows Cryptographic Services Remote Code Execution Vulnerability
Map vulnerabilities like CWE-295 to your infrastructure
EchelonGraph correlates every CVE — across CWE-295 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →