CWE-295— Improper Certificate Validation
The product does not validate, or incorrectly validates, a certificate.— MITRE CWE catalog
1,227 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-295page 20 of 25
- CVE-2025-10548MEDIUMCVSS 6.5EG 6.52025-09-23
The CleverControl employee monitoring software (v11.5.1041.6) fails to validate TLS server certificates during the installation process. The installer downloads and executes external components using curl.exe --insecure, enabling a man-in-…
- CVE-2025-10699MEDIUMCVSS 5.3EG 5.32025-10-15
A vulnerability was reported in the Lenovo LeCloud client application that, under certain conditions, could allow information disclosure.
- CVE-2025-11043HIGHCVSS 7.4EG 7.42026-01-19
An Improper Certificate Validation vulnerability in the OPC-UA client and ANSL over TLS client used in Automation Studio versions before 6.5 could allow an unauthenticated attacker on the network to position themselves to intercept and int…
- CVE-2025-11619HIGHCVSS 8.8EG 8.82025-10-15
Improper certificate validation when connecting to gateways in Devolutions Server 2025.3.2 and earlier allows attackers in MitM position to intercept traffic.
- CVE-2025-11633LOWCVSS 3.7EG 3.72025-10-12
A vulnerability was identified in Tomofun Furbo 360 and Furbo Mini. Affected by this issue is the function upload_file_to_s3 of the file collect_logs.sh of the component HTTP Traffic Handler. The manipulation leads to improper certificate …
- CVE-2025-11695HIGHCVSS 8.0EG 8.02025-10-13
When tlsInsecure=False appears in a connection string, certificate validation is disabled. This vulnerability affects MongoDB Rust Driver versions prior to v3.2.5
- CVE-2025-1193HIGHCVSS 8.1EG 8.12025-02-10
Improper host validation in the certificate validation component in Devolutions Remote Desktop Manager on 2024.3.19 and earlier on Windows allows an attacker to intercept and modify encrypted communications via a man-in-the-middle attack …
- CVE-2025-12047MEDIUMCVSS 5.3EG 5.32025-11-12
A vulnerability was reported in the Lenovo Scanner pro application during an internal security assessment that, under certain circumstances, could allow an attacker on the same logical network to disclose sensitive user files from the appl…
- CVE-2025-12765HIGHCVSS 7.5EG 7.52025-11-13
pgAdmin <= 9.9 is affected by a vulnerability in the LDAP authentication mechanism allows bypassing TLS certificate verification.
- CVE-2025-12893MEDIUMCVSS 4.2EG 4.22025-11-25
Clients may successfully perform a TLS handshake with a MongoDB server despite presenting a client certificate not aligning with the documented Extended Key Usage (EKU) requirements. A certificate that specifies extendedKeyUsage but is mis…
- CVE-2025-12943HIGHCVSS 7.5EG 7.52025-11-11
Improper certificate validation in firmware update logic in NETGEAR RAX30 (Nighthawk AX5 5-Stream AX2400 WiFi 6 Router) and RAXE300 (Nighthawk AXE7800 Tri-Band WiFi 6E Router) allows attackers with the ability to intercept and tamper traff…
- CVE-2025-13034MEDIUMCVSS 5.9EG 5.92026-01-08
When using `CURLOPT_PINNEDPUBLICKEY` option with libcurl or `--pinnedpubkey` with the curl tool,curl should check the public key of the server certificate to verify the peer. This check was skipped in a certain condition that would then m…
- CVE-2025-13052MEDIUMCVSS 5.9EG 5.92025-12-12
When the user set the Notification's sender to send emails to the SMTP server via msmtp, an improper validated TLS/SSL certificates allows an attacker who can intercept network traffic between the SMTP client and server to execute a man-in…
- CVE-2025-14022HIGHCVSS 7.7EG 7.72025-12-15
LINE client for iOS prior to 15.4 allows man-in-the-middle attacks due to improper SSL/TLS certificate validation in an integrated financial SDK. The SDK interfered with the application's network processing, causing server certificate veri…
- CVE-2025-14819MEDIUMCVSS 5.3EG 5.32026-01-08
When doing TLS related transfers with reused easy or multi handles and altering the `CURLSSLOPT_NO_PARTIALCHAIN` option, libcurl could accidentally reuse a CA store cached in memory for which the partial chain option was reversed. Contrar…
- CVE-2025-15323LOWCVSS 3.7EG 3.72026-02-05
Tanium addressed an improper certificate validation vulnerability in Tanium Appliance.
- CVE-2025-15557HIGHCVSS 8.8EG 8.82026-02-05
An Improper Certificate Validation vulnerability in TP-Link Tapo H100 v1 and Tapo P100 v1 allows an on-path attacker on the same network segment to intercept and modify encrypted device-cloud communications. This may compromise the confi…
- CVE-2025-15573CRITICALCVSS 9.4EG 9.42026-02-12
The affected devices do not validate the server certificate when connecting to the SolaX Cloud MQTTS server hosted in the Alibaba Cloud (mqtt001.solaxcloud.com, TCP 8883). This allows attackers in a man-in-the-middle position to act as the…
- CVE-2025-15612MEDIUMCVSS 4.8EG 4.82026-03-27
Wazuh provisioning scripts and Dockerfiles contain an insecure transport vulnerability where curl is invoked with the -k/--insecure flag, disabling SSL/TLS certificate validation. Attackers with network access can perform man-in-the-middle…
- CVE-2025-20126MEDIUMCVSS 4.8EG 4.82025-01-08
A vulnerability in certification validation routines of Cisco ThousandEyes Endpoint Agent for macOS and RoomOS could allow an unauthenticated, remote attacker to intercept or manipulate metrics information. This vulnerability exists bec…
- CVE-2025-20157MEDIUMCVSS 5.9EG 5.92025-05-07
A vulnerability in certificate validation processing of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an unauthenticated, remote attacker to gain access to sensitive information. This vulnerability is due to …
- CVE-2025-20215MEDIUMCVSS 5.4EG 5.42025-08-06
A vulnerability in the meeting-join functionality of Cisco Webex Meetings could have allowed an unauthenticated, network-proximate attacker to complete a meeting-join process in place of an intended targeted user, provided the requisite co…
- CVE-2025-2028MEDIUMCVSS 6.5EG 6.52025-08-06
Lack of TLS validation when downloading a CSV file including mapping from IPs to countries used ONLY for displaying country flags in logs
- CVE-2025-20670MEDIUMCVSS 5.7EG 5.72025-05-05
In Modem, there is a possible permission bypass due to improper certificate validation. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with User execution privile…
- CVE-2025-2183MEDIUMCVSS 5.3EG 5.32025-08-13
An insufficient certificate validation issue in the Palo Alto Networks GlobalProtect™ app enables attackers to connect the GlobalProtect app to arbitrary servers. This can enable a local non-administrative operating system user or an att…
- CVE-2025-22459MEDIUMCVSS 4.8EG 4.82025-04-08
Improper certificate validation in Ivanti Endpoint Manager before version 2024 SU1 or before version 2022 SU7 allows a remote unauthenticated attacker to intercept limited traffic between clients and servers.
- CVE-2025-22486HIGHCVSS 8.8EG 8.82025-06-06
An improper certificate validation vulnerability has been reported to affect File Station 5. If exploited, the vulnerability could allow remote attackers who have gained user access to compromise the security of the system. We have alread…
- CVE-2025-23091MEDIUMCVSS 5.9EG 5.92025-02-01
An Improper Certificate Validation on UniFi OS devices, with Identity Enterprise configured, could allow a malicious actor to execute a man-in-the-middle (MitM) attack during application update.
- CVE-2025-23114CRITICALCVSS 9.0EG 9.02025-02-05
A vulnerability in Veeam Updater component allows Man-in-the-Middle attackers to execute arbitrary code on the affected server. This issue occurs due to a failure to properly validate TLS certificate.
- CVE-2025-23118MEDIUMCVSS 6.4EG 6.42025-03-01
An Improper Certificate Validation vulnerability could allow an authenticated malicious actor with access to UniFi Protect Cameras adjacent network to make unsupported changes to the camera system.
- CVE-2025-24471MEDIUMCVSS 6.5EG 6.52025-06-10
An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked certificate.
- CVE-2025-26478LOWCVSS 3.1EG 3.12025-04-17
Dell ECS version 3.8.1.4 and prior contain an Improper Certificate Validation vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information disclosure.
- CVE-2025-2669MEDIUMCVSS 6.5EG 6.02026-06-22
IBM Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data versions 4.8, 5.0, 5.1, 5.2, 5.3 could allow a privileged user to perform operations and obtain sensitive information outside of their authority due to improper token va…
- CVE-2025-27377MEDIUMCVSS 5.3EG 5.32026-01-22
Altium Designer version 24.9.0 does not validate self-signed server certificates for cloud connections. An attacker capable of performing a man-in-the-middle (MITM) attack could exploit this issue to intercept or manipulate network traffic…
- CVE-2025-27820HIGHCVSS 7.5EG 7.52025-04-24
A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verification. Discovered by the Apache HttpClient team. Fixed in the 5.4.3 release
- CVE-2025-28169HIGHCVSS 8.1EG 8.12025-04-23
BYD QIN PLUS DM-i Dilink OS v3.0_13.1.7.2204050.1 to v3.0_13.1.7.2312290.1_0 was discovered to cend broadcasts to the manufacturer's cloud server unencrypted, allowing attackers to execute a man-in-the-middle attack.
- CVE-2025-29331CRITICALCVSS 9.8EG 9.82025-06-26
An issue in MHSanaei 3x-ui before v.2.5.3 and before allows a remote attacker to execute arbitrary code via the management script x-ui passes the no check certificate option to wget when downloading updates
- CVE-2025-29883HIGHCVSS 8.8EG 8.82025-06-06
An improper certificate validation vulnerability has been reported to affect File Station 5. If exploited, the vulnerability could allow remote attackers who have gained user access to compromise the security of the system. We have alread…
- CVE-2025-29884HIGHCVSS 8.8EG 8.82025-06-06
An improper certificate validation vulnerability has been reported to affect File Station 5. If exploited, the vulnerability could allow remote attackers who have gained user access to compromise the security of the system. We have alread…
- CVE-2025-29885HIGHCVSS 8.8EG 8.82025-06-06
An improper certificate validation vulnerability has been reported to affect File Station 5. If exploited, the vulnerability could allow remote attackers who have gained user access to compromise the security of the system. We have alread…
- CVE-2025-30000MEDIUMCVSS 6.7EG 6.72025-04-08
A vulnerability has been identified in Siemens License Server (SLS) (All versions < V4.3). The affected application does not properly restrict permissions of the users. This could allow a lowly-privileged attacker to escalate their privile…
- CVE-2025-30024MEDIUMCVSS 6.8EG 6.82025-07-11
The communication protocol used between client and server had a flaw that could be leveraged to execute a man in the middle attack.
- CVE-2025-30277HIGHCVSS 8.8EG 8.82025-08-29
An improper certificate validation vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to compromise the security of the system. We have already fixed…
- CVE-2025-30278HIGHCVSS 8.8EG 8.82025-08-29
An improper certificate validation vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to compromise the security of the system. We have already fixed…
- CVE-2025-30279HIGHCVSS 8.8EG 8.82025-06-06
An improper certificate validation vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to compromise the security of the system. We have already fix…
- CVE-2025-30669MEDIUMCVSS 4.8EG 4.82025-11-13
Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access.
- CVE-2025-32057MEDIUMCVSS 6.5EG 6.52026-01-22
The Infotainment ECU manufactured by Bosch which is installed in Nissan Leaf ZE1 – 2020 uses a Redbend service for over-the-air provisioning and updates. HTTPS is used for communication with the back-end server. Due to usage of the defau…
- CVE-2025-3218MEDIUMCVSS 5.4EG 5.42025-05-07
IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 is vulnerable to authentication and authorization attacks due to incorrect validation processing in IBM i Netserver. A malicious actor could use the weaknesses, in conjunction with brute force authenticat…
- CVE-2025-32407MEDIUMCVSS 5.9EG 5.92025-05-16
Samsung Internet for Galaxy Watch version 5.0.9, available up until Samsung Galaxy Watch 3, does not properly validate TLS certificates, allowing for an attacker to impersonate any and all websites visited by the user. This is a critical m…
- CVE-2025-32745MEDIUMCVSS 6.5EG 6.52026-05-26
Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Improper Certificate Validation... Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Improper Certificate Validation vulnerability. An unauthenticated attacker with adjacen…
Map vulnerabilities like CWE-295 to your infrastructure
EchelonGraph correlates every CVE — across CWE-295 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →