CWE-295— Improper Certificate Validation
The product does not validate, or incorrectly validates, a certificate.— MITRE CWE catalog
1,227 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-295page 6 of 25
- CVE-2019-15525HIGHCVSS 8.1EG 8.12019-08-23
There is Missing SSL Certificate Validation in the pw3270 terminal emulator before version 5.1.
- CVE-2019-15604HIGHCVSS 7.5EG 7.52020-02-07
Improper Certificate Validation in Node.js 10, 12, and 13 causes the process to abort when sending a crafted X.509 certificate
- CVE-2019-1590HIGHCVSS 8.1EG 8.12019-05-03
A vulnerability in the Transport Layer Security (TLS) certificate validation functionality of Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote attacker to perform …
- CVE-2019-16179MEDIUMCVSS 5.3EG 5.32019-09-09
Limesurvey before 3.17.14 does not enforce SSL/TLS usage in the default configuration.
- CVE-2019-16209HIGHCVSS 7.4EG 7.42019-11-08
A vulnerability, in The ReportsTrustManager class of Brocade SANnav versions before v2.0, could allow an attacker to perform a man-in-the-middle attack against Secure Sockets Layer(SSL)connections.
- CVE-2019-16252MEDIUMCVSS 5.9EG 5.92020-06-12
Missing SSL Certificate Validation in the Nutfind.com application through 3.9.12 for Android allows a man-in-the-middle attacker to sniff and manipulate all API requests, including login credentials and location data.
- CVE-2019-16263HIGHCVSS 7.4EG 7.42019-10-07
The Twitter Kit framework through 3.4.2 for iOS does not properly validate the api.twitter.com SSL certificate. Although the certificate chain must contain one of a set of pinned certificates, there are certain implementation errors such a…
- CVE-2019-16281HIGHCVSS 7.5EG 7.52020-12-30
Ptarmigan before 0.2.3 lacks API token validation, e.g., an "if (token === apiToken) {return true;} return false;" code block.
- CVE-2019-16558HIGHCVSS 8.2EG 8.22019-12-17
Jenkins Spira Importer Plugin 3.2.3 and earlier disables SSL/TLS certificate validation for the Jenkins master JVM.
- CVE-2019-16561HIGHCVSS 7.1EG 7.12019-12-17
Jenkins WebSphere Deployer Plugin 1.6.1 and earlier allows users with Overall/Read access to disable SSL/TLS certificate and hostname validation for the entire Jenkins master JVM.
- CVE-2019-1659HIGHCVSS 7.4EG 7.42019-02-21
A vulnerability in the Identity Services Engine (ISE) integration feature of Cisco Prime Infrastructure (PI) could allow an unauthenticated, remote attacker to perform a man-in-the-middle attack against the Secure Sockets Layer (SSL) tunne…
- CVE-2019-1683HIGHCVSS 7.4EG 7.42019-02-25
A vulnerability in the certificate handling component of the Cisco SPA112, SPA525, and SPA5X5 Series IP Phones could allow an unauthenticated, remote attacker to listen to or control some aspects of a Transport Level Security (TLS)-encrypt…
- CVE-2019-17007HIGHCVSS 7.5EG 7.52020-10-22
In Network Security Services before 3.44, a malformed Netscape Certificate Sequence can cause NSS to crash, resulting in a denial of service.
- CVE-2019-1748HIGHCVSS 7.4EG 7.42019-03-28
A vulnerability in the Cisco Network Plug-and-Play (PnP) agent of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to gain unauthorized access to sensitive data. The vulnerability exists because …
- CVE-2019-17560CRITICALCVSS 9.1EG 9.12020-03-30
The "Apache NetBeans" autoupdate system does not validate SSL certificates and hostnames for https based downloads. This allows an attacker to intercept downloads of autoupdates and modify the download, potentially injecting malicious code…
- CVE-2019-1757MEDIUMCVSS 5.9EG 5.92019-03-28
A vulnerability in the Cisco Smart Call Home feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data using an invalid certificate. The vulnerability is due…
- CVE-2019-1859HIGHCVSS 7.2EG 7.22019-05-03
A vulnerability in the Secure Shell (SSH) authentication process of Cisco Small Business Switches software could allow an attacker to bypass client-side certificate authentication and revert to password authentication. The vulnerability ex…
- CVE-2019-18632CRITICALCVSS 9.8EG 9.82019-10-30
European Commission eIDAS-Node Integration Package before 2.3.1 allows Certificate Faking because an attacker can sign a manipulated SAML response with a forged certificate.
- CVE-2019-18633CRITICALCVSS 9.8EG 9.82019-10-30
European Commission eIDAS-Node Integration Package before 2.3.1 has Missing Certificate Validation because a certain ExplicitKeyTrustEvaluator return value is not checked. NOTE: only 2.1 is confirmed to be affected.
- CVE-2019-18826CRITICALCVSS 9.8EG 9.82019-12-16
Barco ClickShare Button R9861500D01 devices before 1.9.0 have Improper Following of a Certificate's Chain of Trust. The embedded 'dongle_bridge' program used to expose the functionalities of the ClickShare Button to a USB host, does not pr…
- CVE-2019-18847CRITICALCVSS 9.8EG 9.82020-08-26
Enterprise Access Client Auto-Updater allows for Remote Code Execution prior to version 2.0.1.
- CVE-2019-1886HIGHCVSS 8.6EG 8.62019-07-04
A vulnerability in the HTTPS decryption feature of Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to insufficient validation of Secu…
- CVE-2019-19101MEDIUMCVSS 6.5EG 5.92020-04-29
A missing secure communication definition and an incomplete TLS validation in the upgrade service in B&R Automation Studio versions 4.0.x, 4.1.x, 4.2.x, < 4.3.11SP, < 4.4.9SP, < 4.5.5SP, < 4.6.4 and < 4.7.2 enable unauthenticated users to …
- CVE-2019-19270HIGHCVSS 7.5EG 7.52019-11-26
An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. Failure to check for the appropriate field of a CRL entry (checking twice for subject, rather than once for subject and once for issuer) prevents some valid CRLs from bei…
- CVE-2019-19271HIGHCVSS 7.5EG 7.52019-11-26
An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. A wrong iteration variable, used when checking a client certificate against CRL entries (installed by a system administrator), can cause some CRL entries to be ignored, and…
- CVE-2019-1940MEDIUMCVSS 5.9EG 5.92019-07-17
A vulnerability in the Web Services Management Agent (WSMA) feature of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data using an invalid X.509 certif…
- CVE-2019-1948MEDIUMCVSS 5.9EG 5.92019-08-21
A vulnerability in Cisco Webex Meetings Mobile (iOS) could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data by using an invalid Secure Sockets Layer (SSL) certificate. The vulnerability is due to…
- CVE-2019-20455MEDIUMCVSS 5.9EG 5.92020-02-14
Gateways/Gateway.php in Heartland & Global Payments PHP SDK before 2.0.0 does not enforce SSL certificate validations.
- CVE-2019-20461CRITICALCVSS 9.8EG 9.82024-11-07
An issue was discovered on Alecto IVM-100 2019-11-12 devices. The device uses a custom UDP protocol to start and control video and audio services. The protocol has been partially reverse engineered. Based upon the reverse engineering, no p…
- CVE-2019-20894HIGHCVSS 7.5EG 7.52020-07-02
Traefik 2.x, in certain configurations, allows HTTPS sessions to proceed without mutual TLS verification in a situation where ERR_BAD_SSL_CLIENT_AUTH_CERT should have occurred.
- CVE-2019-25652HIGHCVSS 7.5EG 7.52026-03-27
UniFi Network Controller before version 5.10.22 and 5.11.x before 5.11.18 contains an improper certificate verification vulnerability that allows adjacent network attackers to conduct man-in-the-middle attacks by presenting a false SSL cer…
- CVE-2019-3685HIGHCVSS 7.4EG 7.42019-11-05
Open Build Service before version 0.165.4 diddn't validate TLS certificates for HTTPS connections with the osc client binary
- CVE-2019-3751MEDIUMCVSS 6.4EG 7.42019-09-03
Dell EMC Enterprise Copy Data Management (eCDM) versions 1.0, 1.1, 2.0, 2.1, and 3.0 contain a certificate validation vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerability to carry out a man-in-the-mi…
- CVE-2019-3762HIGHCVSS 7.5EG 7.52020-03-18
Data Protection Central versions 1.0, 1.0.1, 18.1, 18.2, and 19.1 contains an Improper Certificate Chain of Trust Vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by obtaining a CA signed certif…
- CVE-2019-3777HIGHCVSS 8.0EG 9.82019-03-07
Pivotal Application Service (PAS), versions 2.2.x prior to 2.2.12, 2.3.x prior to 2.3.7 and 2.4.x prior to 2.4.3, contain apps manager that uses a cloud controller proxy that fails to verify SSL certs. A remote unauthenticated attacker tha…
- CVE-2019-3807LOWCVSS 3.7EG 9.82019-01-29
An issue has been found in PowerDNS Recursor versions 4.1.x before 4.1.9 where records in the answer section of responses received from authoritative servers with the AA flag not set were not properly validated, allowing an attacker to byp…
- CVE-2019-3814HIGHCVSS 7.7EG 6.82019-03-27
It was discovered that Dovecot before versions 2.2.36.1 and 2.3.4.1 incorrectly handled client certificates. A remote attacker in possession of a valid certificate with an empty username field could possibly use this issue to impersonate o…
- CVE-2019-3841HIGHCVSS 7.4EG 6.82019-03-25
Kubevirt/virt-cdi-importer, versions 1.4.0 to 1.5.3 inclusive, were reported to disable TLS certificate validation when importing data into PVCs from container registries. This could enable man-in-the-middle attacks between a container reg…
- CVE-2019-3875MEDIUMCVSS 6.5EG 4.82019-06-12
A vulnerability was found in keycloak before 6.0.2. The X.509 authenticator supports the verification of client certificates through the CRL, where the CRL list can be obtained from the URL provided in the certificate itself (CDP) or throu…
- CVE-2019-3890HIGHCVSS 8.1EG 8.12019-08-01
It was discovered evolution-ews before 3.31.3 does not check the validity of SSL certificates. An attacker could abuse this flaw to get confidential information by tricking the user into connecting to a fake server without the user noticin…
- CVE-2019-4150LOWCVSS 3.7EG 3.72019-06-25
IBM Security Access Manager 9.0.1 through 9.0.6 does not validate, or incorrectly validates, a certificate which could allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack. IBM X-Force ID: 158510.
- CVE-2019-4264MEDIUMCVSS 5.9EG 5.92019-05-29
IBM QRadar SIEM 7.2.8 WinCollect could allow an attacker to obtain sensitive information by spoofing a trusted entity using man in the middle techniques due to not validating or incorrectly validating a certificate. IBM X-Force ID: 160072.
- CVE-2019-4654MEDIUMCVSS 4.8EG 4.82020-04-15
IBM QRadar 7.3.0 to 7.3.3 Patch 2 does not validate, or incorrectly validates, a certificate which could allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack. IBM X-ForceID: 170965.
- CVE-2019-5101MEDIUMCVSS 4.0EG 5.92019-11-18
An exploitable information leak vulnerability exists in the ustream-ssl library of OpenWrt, versions 18.06.4 and 15.05.1. When connecting to a remote server, the server's SSL certificate is checked but no action is taken when the certifica…
- CVE-2019-5102MEDIUMCVSS 4.0EG 5.92019-11-18
An exploitable information leak vulnerability exists in the ustream-ssl library of OpenWrt, versions 18.06.4 and 15.05.1. When connecting to a remote server, the server's SSL certificate is checked but no action is taken when the certifica…
- CVE-2019-5280MEDIUMCVSS 6.5EG 6.52019-08-13
The SIP TLS module of Huawei CloudLink Phone 7900 with V600R019C10 has a TLS certificate verification vulnerability. Due to insufficient verification of specific parameters of the TLS server certificate, attackers can perform man-in-the-mi…
- CVE-2019-5506MEDIUMCVSS 5.9EG 5.92019-10-09
Clustered Data ONTAP versions 9.0 and higher do not enforce hostname verification under certain circumstances making them susceptible to impersonation via man-in-the-middle attacks.
- CVE-2019-5537MEDIUMCVSS 5.9EG 5.92019-10-28
Sensitive information disclosure vulnerability resulting from a lack of certificate validation during the File-Based Backup and Restore operations of VMware vCenter Server Appliance (6.7 before 6.7u3a and 6.5 before 6.5u3d) may allow a mal…
- CVE-2019-5538MEDIUMCVSS 5.9EG 5.92019-10-28
Sensitive information disclosure vulnerability resulting from a lack of certificate validation during the File-Based Backup and Restore operations of VMware vCenter Server Appliance (6.7 before 6.7u3a and 6.5 before 6.5u3d) may allow a mal…
- CVE-2019-5729HIGHCVSS 8.1EG 8.12019-03-21
Splunk-SDK-Python before 1.6.6 does not properly verify untrusted TLS server certificates, which could result in man-in-the-middle attacks.
Map vulnerabilities like CWE-295 to your infrastructure
EchelonGraph correlates every CVE — across CWE-295 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →