CWE-295— Improper Certificate Validation
The product does not validate, or incorrectly validates, a certificate.— MITRE CWE catalog
1,227 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-295page 18 of 25
- CVE-2024-30134MEDIUMCVSS 6.7EG 6.72024-09-26
The HCL Traveler for Microsoft Outlook executable (HTMO.exe) is being flagged as potentially Malicious Software or an Unrecognized Application.
- CVE-2024-30149MEDIUMCVSS 4.8EG 4.82024-10-31
HCL AppScan Source <= 10.6.0 does not properly validate a TLS/SSL certificate for an executable.
- CVE-2024-31340MEDIUMCVSS 4.8EG 4.82024-05-22
TP-Link Tether versions prior to 4.5.13 and TP-Link Tapo versions prior to 3.3.6 do not properly validate certificates, which may allow a remote unauthenticated attacker to eavesdrop on an encrypted communication via a man-in-the-middle at…
- CVE-2024-31489MEDIUMCVSS 6.8EG 6.82024-09-10
AAn improper certificate validation vulnerability [CWE-295] in FortiClientWindows 7.2.0 through 7.2.2, 7.0.0 through 7.0.11, FortiClientLinux 7.2.0, 7.0.0 through 7.0.11 and FortiClientMac 7.0.0 through 7.0.11, 7.2.0 through 7.2.4 may all…
- CVE-2024-31853HIGHCVSS 8.1EG 8.12025-07-08
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.11). During establishment of a https connection to the TLS server of a managed device, the affected application doesn't check the extended key usage attribute of t…
- CVE-2024-31854HIGHCVSS 8.1EG 8.12025-07-08
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.11). During establishment of a https connection to the TLS server of a managed device, the affected application doesn't check device's certificate common name agai…
- CVE-2024-31871HIGHCVSS 7.5EG 7.52024-04-10
IBM Security Verify Access Appliance 10.0.0 through 10.0.7 could allow a malicious actor to conduct a man in the middle attack when deploying Python scripts due to improper certificate validation. IBM X-Force ID: 287306.
- CVE-2024-31872HIGHCVSS 7.5EG 7.52024-04-10
IBM Security Verify Access Appliance 10.0.0 through 10.0.7 could allow a malicious actor to conduct a man in the middle attack when deploying Open Source scripts due to missing certificate validation. IBM X-Force ID: 287316.
- CVE-2024-31955MEDIUMCVSS 4.9EG 4.92024-10-15
An issue was discovered in Samsung eMMC with KLMAG2GE4A and KLM8G1WEMB firmware. Code bypass through Electromagnetic Fault Injection allows an attacker to successfully authenticate and write to the RPMB (Replay Protected Memory Block) area…
- CVE-2024-32865MEDIUMCVSS 6.4EG 6.42024-08-01
Under certain circumstances the exacqVision Server will not properly validate TLS certificates provided by connected devices.
- CVE-2024-32928MEDIUMCVSS 5.9EG 5.92024-08-19
The libcurl CURLOPT_SSL_VERIFYPEER option was disabled on a subset of requests made by Nest production devices which enabled a potential man-in-the-middle attack on requests to Google cloud services by any host the traffic was routed throu…
- CVE-2024-33509MEDIUMCVSS 4.8EG 4.82024-07-09
An improper certificate validation vulnerability [CWE-295] in FortiWeb 7.2.0 through 7.2.1, 7.0 all versions, 6.4 all versions and 6.3 all versions may allow a remote and unauthenticated attacker in a Man-in-the-Middle position to decipher…
- CVE-2024-33612MEDIUMCVSS 6.8EG 6.82024-05-08
An improper certificate validation vulnerability exists in BIG-IP Next Central Manager and may allow an attacker to impersonate an Instance Provider system. Note: Software versions which have reached End of Technical Support (EoTS) are …
- CVE-2024-35140HIGHCVSS 7.7EG 7.72024-05-31
IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate their privileges due to improper certificate validation. IBM X-Force ID: 292416.
- CVE-2024-35299MEDIUMCVSS 5.9EG 5.92024-05-16
In JetBrains YouTrack before 2024.1.29548 the SMTPS protocol communication lacked proper certificate hostname validation
- CVE-2024-37311HIGHCVSS 8.2EG 8.22024-08-23
Collabora Online is a collaborative online office suite based on LibreOffice. In affected versions of Collabora Online, https connections from coolwsd to other hosts may incompletely verify the remote host's certificate's against the full …
- CVE-2024-3738HIGHCVSS 7.3EG 7.32024-04-13
A vulnerability classified as critical has been found in cym1102 nginxWebUI up to 3.9.9. This affects the function handlePath of the file /adminPage/conf/saveCmd. The manipulation of the argument nginxPath leads to improper certificate val…
- CVE-2024-37865MEDIUMCVSS 5.9EG 5.92024-07-09
An issue in S3Browser v.11.4.5 and v.10.9.9 and fixed in v.11.5.7 allows a remote attacker to obtain sensitive information via the S3 compatible storage component.
- CVE-2024-38324MEDIUMCVSS 5.9EG 5.92024-09-25
IBM Storage Defender 2.0.0 through 2.0.7 on-prem defender-sensor-cmd CLI does not validate server name during registration and unregistration operations which could expose sensitive information to an attacker with access to the system.
- CVE-2024-38642HIGHCVSS 7.8EG 7.82024-09-06
An improper certificate validation vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow local network users to compromise the security of the system via unspecified vectors. We have already fixed …
- CVE-2024-38861HIGHCVSS 7.4EG 7.42024-09-27
Improper Certificate Validation in Checkmk Exchange plugin MikroTik allows attackers in MitM position to intercept traffic. This issue affects MikroTik: from 2.0.0 through 2.5.5, from 0.4a_mk through 2.0a.
- CVE-2024-39312MEDIUMCVSS 5.3EG 5.32024-07-08
Botan is a C++ cryptography library. X.509 certificates can identify elliptic curves using either an object identifier or using explicit encoding of the parameters. A bug in the parsing of name constraint extensions in X.509 certificates m…
- CVE-2024-39698HIGHCVSS 7.5EG 7.52024-07-09
electron-updater allows for automatic updates for Electron apps. The file `packages/electron-updater/src/windowsExecutableCodeSignatureVerifier.ts` implements the signature validation routine for Electron applications on Windows. Because o…
- CVE-2024-39771MEDIUMCVSS 6.8EG 6.82024-08-28
QBiC CLOUD CC-2L v1.1.30 and earlier and Safie One v1.8.2 and earlier do not properly validate certificates, which may allow a network-adjacent unauthenticated attacker to obtain and/or alter communications of the affected product via a ma…
- CVE-2024-40464HIGHCVSS 8.8EG 8.82024-07-31
An issue in beego v.2.2.0 and before allows a remote attacker to escalate privileges via the sendMail function located in beego/core/logs/smtp.go file
- CVE-2024-40590MEDIUMCVSS 4.8EG 4.82025-03-14
An improper certificate validation vulnerability [CWE-295] in FortiPortal version 7.4.0, version 7.2.4 and below, version 7.0.8 and below, version 6.0.15 and below when connecting to a FortiManager device, a FortiAnalyzer device, or an SM…
- CVE-2024-4062LOWCVSS 3.7EG 3.72024-04-23
A vulnerability was found in Hualai Xiaofang iSC5 3.2.2_112 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to improper certificate validation. The attack may be launched remotely…
- CVE-2024-4063LOWCVSS 3.7EG 3.72024-04-23
A vulnerability was found in EZVIZ CS-C6-21WFR-8 5.2.7 Build 170628. It has been classified as problematic. This affects an unknown part of the component Davinci Application. The manipulation leads to improper certificate validation. It is…
- CVE-2024-40702HIGHCVSS 8.2EG 8.22025-01-07
IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 could allow an unauthorized user to obtain valid tokens to gain access to protected resources due to improper certificate validation.
- CVE-2024-40714HIGHCVSS 8.3EG 8.32024-09-07
An improper certificate validation vulnerability in TLS certificate validation allows an attacker on the same network to intercept sensitive credentials during restore operations.
- CVE-2024-41255HIGHCVSS 7.5EG 5.92024-07-31
filestash v0.4 is configured to skip TLS certificate verification when using the FTPS protocol, possibly allowing attackers to execute a man-in-the-middle attack via the Init function of index.go.
- CVE-2024-41256MEDIUMCVSS 5.9EG 8.12024-07-31
Default configurations in the ShareProofVerifier function of filestash v0.4 causes the application to skip the TLS certificate verification process when sending out email verification codes, possibly allowing attackers to access sensitive …
- CVE-2024-41258MEDIUMCVSS 5.3EG 5.32024-07-31
An issue was discovered in filestash v0.4. The usage of the ssh.InsecureIgnoreHostKey() disables host key verification, possibly allowing attackers to obtain sensitive information via a man-in-the-middle attack.
- CVE-2024-41264HIGHCVSS 7.5EG 3.72024-08-01
An issue discovered in casdoor v1.636.0 allows attackers to obtain sensitive information via the ssh.InsecureIgnoreHostKey() method.
- CVE-2024-41334HIGHCVSS 8.8EG 9.82025-02-27
Draytek devices Vigor 165/166 prior to v4.2.6 , Vigor 2620/LTE200 prior to v3.9.8.8, Vigor 2860/2925 prior to v3.9.7, Vigor 2862/2926 prior to v3.9.9.4, Vigor 2133/2762/2832 prior to v3.9.8, Vigor 2135/2765/2766 prior to v4.4.5.1, Vigor 28…
- CVE-2024-41724HIGHCVSS 8.7EG 8.72025-03-10
Improper Certificate Validation (CWE-295) in the Gallagher Command Centre SALTO integration allowed an attacker to spoof the SALTO server. This issue affects all versions of Gallagher Command Centre prior to 9.20.1043.
- CVE-2024-41996HIGHCVSS 7.5EG 7.52024-08-26
Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentia…
- CVE-2024-42186LOWCVSS 2.8EG 2.82025-01-23
BigFix Patch Download Plug-ins are affected by an insecure protocol support. The application can allow improper handling of SSL certificates validation.
- CVE-2024-42193HIGHCVSS 8.1EG 8.12025-04-15
HCL BigFix Web Reports' service communicates over HTTPS but exhibits a weakness in its handling of SSL certificate validation. This scenario presents a possibility of man-in-the-middle (MITM) attacks and data exposure as, if exploited, thi…
- CVE-2024-42395CRITICALCVSS 9.8EG 9.82024-08-06
There is a vulnerability in the AP Certificate Management Service which could allow a threat actor to execute an unauthenticated RCE attack. Successful exploitation could allow an attacker to execute arbitrary commands on the underlying op…
- CVE-2024-43107HIGHCVSS 7.2EG 7.22025-03-10
Improper Certificate Validation (CWE-295) in the Gallagher Milestone Integration Plugin (MIP) permits unauthenticated messages (e.g. alarm events) to be sent to the Plugin. This issue effects Gallagher MIPS Plugin v4.0 prior to v4.0.32, a…
- CVE-2024-43177MEDIUMCVSS 5.9EG 5.92024-10-22
IBM Concert 1.0.0 and 1.0.1 vulnerable to attacks that rely on the use of cookies without the SameSite attribute.
- CVE-2024-43201HIGHCVSS 8.8EG 8.82024-09-23
The Planet Fitness Workouts iOS and Android mobile apps fail to properly validate TLS certificates, allowing an attacker with appropriate network access to obtain session tokens and sensitive information. Planet Fitness first addressed thi…
- CVE-2024-43550HIGHCVSS 7.4EG 7.42024-10-08
Windows Secure Channel Spoofing Vulnerability
- CVE-2024-45159CRITICALCVSS 9.8EG 9.82024-09-05
An issue was discovered in Mbed TLS 3.x before 3.6.1. With TLS 1.3, when a server enables optional authentication of the client, if the client-provided certificate does not have appropriate values in if keyUsage or extKeyUsage extensions, …
- CVE-2024-45205HIGHCVSS 7.1EG 7.12024-12-04
An Improper Certificate Validation on the UniFi iOS App managing a standalone UniFi Access Point (not using UniFi Network Application) could allow a malicious actor with access to an adjacent network to take control of this UniFi Access Po…
- CVE-2024-45234HIGHCVSS 7.5EG 7.52024-08-24
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) an ROA or a Manifest containing a signedAttrs encoded in non-canonical form. This bypasses …
- CVE-2024-45641MEDIUMCVSS 6.5EG 6.52025-05-20
IBM Security ReaQta EDR 3.12 could allow an attacker to perform unauthorized actions due to improper SSL certificate validation.
- CVE-2024-47119MEDIUMCVSS 5.9EG 5.92024-12-18
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 does not properly validate a certificate which could allow an attacker to spoof a trusted entity by interfering in the communication path between the host and client.
- CVE-2024-47241MEDIUMCVSS 5.5EG 5.52024-10-18
Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains an Improper Certificate Validation vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to unauth…
Map vulnerabilities like CWE-295 to your infrastructure
EchelonGraph correlates every CVE — across CWE-295 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →