Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-295 (证书验证不恰当) — Vulnerability Class 462

462 vulnerabilities classified as CWE-295 (证书验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-6058 HTTPS Certificate Validation Issue in Bitdefender Safepay (VA-11167) — Total Security 7.4 -2024-10-18
CVE-2023-6057 Insecure Trust of DSA-Signed Certificates in Bitdefender Total Security HTTPS Scanning (VA-11166) — Total Security 5.9 -2024-10-18
CVE-2023-6056 Insecure Trust of Self-Signed Certificates in Bitdefender Total Security HTTPS Scanning (VA-11164) — Total Security 7.4 -2024-10-18
CVE-2023-6055 Improper Certificate Validation in Bitdefender Total Security HTTPS Scanning (VA-11158) — Total Security 7.4 -2024-10-18
CVE-2024-22030 Rancher agents can be hijacked by taking over the Rancher Server URL — rancher 8.0 High2024-10-16
CVE-2024-48915 Agent Dart missing certificate verification checks — agent_dart 7.5 -2024-10-15
CVE-2024-43550 Windows Secure Channel Spoofing Vulnerability — Windows 10 Version 1809 7.4 High2024-10-08
CVE-2024-7206 Firmware extraction and Hardware SSL Pinning Bypass — Zigbee Bridge Pro 7.8AIHighAI2024-10-08
CVE-2024-20385 Cisco Nexus Dashboard Orchestrator SSL Certificate Validation Vulnerability — Cisco Nexus Dashboard Orchestrator 5.9 Medium2024-10-02
CVE-2024-9160 Security Misconfiguration in Forge module PEADM — PEADM Forge Module 9.1AICriticalAI2024-09-27
CVE-2024-38861 Lack of TLS validation in plugin MikroTik on Checkmk Exchange 5.9AIMediumAI2024-09-27
CVE-2024-43201 Planet Fitness Workouts mobile apps do not properly validate TLS certificates — Planet Fitness Workouts 8.8 High2024-09-23
CVE-2024-8287 Anbox Management Service 安全漏洞 — Anbox Cloud 7.5 High2024-09-18
CVE-2022-45856 Fortinet FortiClient 信任管理问题漏洞 — FortiClientiOS 4.6 Medium2024-09-10
CVE-2024-31489 Fortinet FortiClient 信任管理问题漏洞 — FortiClientMac 6.4 Medium2024-09-10
CVE-2024-38642 QuMagie — QuMagie 7.8 -2024-09-06
CVE-2024-37311 Collabora Online's remote host TLS certificates are not fully verified — online 8.2 High2024-08-23
CVE-2024-8007 Openstack-tripleo-common: rhosp director disables tls verification for registry mirrors 8.1 High2024-08-21
CVE-2023-50314 IBM WebSphere Application Server Libery information disclosure — WebSphere Application Liberty 5.3 Medium2024-08-14
CVE-2023-50315 IBM WebSphere Application Server information disclosure — WebSphere Application Server 5.3 Medium2024-08-14
CVE-2024-7570 Ivanti ITSM 安全漏洞 — ITSM 8.3 High2024-08-13
CVE-2024-5445 Ecosystem Agent Insufficient Transport Layer Security — Ecosystem Agent 3.8 Low2024-08-08
CVE-2024-7383 Libnbd: nbd server improper certificate validation 7.4 High2024-08-05
CVE-2024-6472 Ability to trust not validated macro signatures removed in high security mode — LibreOffice 7.8 High2024-08-05
CVE-2024-32865 exacqVison - TLS certificate validation — exacqVision 6.4 Medium2024-08-01
CVE-2024-4786 Lenovo Tab K10 信任管理问题漏洞 — Tab K10 2.8 Low2024-07-26
CVE-2023-50178 Fortinet FortiADC 信任管理问题漏洞 — FortiADC 7.2 High2024-07-09
CVE-2023-50179 Fortinet FortiADC 信任管理问题漏洞 — FortiADC 4.7 Medium2024-07-09
CVE-2024-33509 Fortinet FortiWeb 信任管理问题漏洞 — FortiWeb 4.4 Medium2024-07-09
CVE-2024-39312 Botan has an Authorization Error due to Name Constraint Decoding Bug — botan 5.3 Medium2024-07-08

Vulnerabilities classified as CWE-295 (证书验证不恰当) represent 462 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.