Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-295 (证书验证不恰当) — Vulnerability Class 462

462 vulnerabilities classified as CWE-295 (证书验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-28807 Bypass of ZIA domain fronting detection module through evasion technique — ZIA 5.1 Medium2024-01-31
CVE-2023-50356 Improper Certificate Validation in AREAL Topkapi Vision (Server) — Topkapi Vision (Server) 6.5 Medium2024-01-31
CVE-2023-6043 Lenovo Vantage 信任管理问题漏洞 — Vantage 7.8 High2024-01-19
CVE-2023-51662 Snowflake Connector .NET does not properly check the Certificate Revocation List (CRL) — snowflake-connector-net 6.0 Medium2023-12-22
CVE-2023-5594 Improper following of a certificate's chain of trust in ESET security products — ESET NOD32 Antivirus 7.5 High2023-12-21
CVE-2023-1514 Hitachi Energy RTU500 信任管理问题漏洞 — RTU500 Scripting Interface 7.4 High2023-12-19
CVE-2023-6680 Improper Certificate Validation in GitLab — GitLab 7.4 High2023-12-15
CVE-2023-48427 Siemens SINEC INS 信任管理问题漏洞 — SINEC INS 8.1 High2023-12-12
CVE-2023-49247 Huawei HarmonyOS 安全漏洞 — HarmonyOS 7.5AIHighAI2023-12-06
CVE-2023-43082 Dell Unity 安全漏洞 — Unity 8.6 High2023-11-22
CVE-2023-31421 Beats, Elastic Agent, APM Server, and Fleet Server Improper Certificate Validation issue — Beats 5.9 Medium2023-10-26
CVE-2022-3761 OpenVPN Connect 信任管理问题漏洞 — OpenVPN Connect 7.4 -2023-10-17
CVE-2022-43892 IBM Security Verify Privilege information disclosure — Security Verify Privilege 3.7 Low2023-10-17
CVE-2022-22380 IBM Security Verify Privilege improper authentication — Security Verify Privilege 5.0 Medium2023-10-17
CVE-2023-5422 SSL Certificates are not checked for E-Mail Handling — OTRS 8.7 High2023-10-16
CVE-2023-45613 JetBrains Ktor 信任管理问题漏洞 — Ktor 6.8 Medium2023-10-09
CVE-2023-2422 Keycloak: oauth client impersonation — Red Hat Single Sign-On 7 5.5 Medium2023-10-04
CVE-2023-4801 ITM MacOS Agent Improper Certificate Validation — Insider Threat Management 7.5 High2023-09-13
CVE-2023-41180 Apache NiFi MiNiFi C++: Incorrect Certificate Validation in InvokeHTTP for MiNiFi C++ — Apache NiFi MiNiFi C++ 5.9 -2023-09-03
CVE-2023-39441 Apache Airflow SMTP Provider, Apache Airflow IMAP Provider, Apache Airflow: SMTP/IMAP client components allowed MITM due to missing Certificate Validation — Apache Airflow SMTP Provider 6.8 -2023-08-23
CVE-2023-1409 Certificate validation issue in MongoDB Server running on Windows or macOS — MongoDB Server 5.3 Medium2023-08-23
CVE-2023-38686 Sydent does not verify email server certificates — sydent 9.3 Critical2023-08-04
CVE-2023-3615 Lack of server certificate validation in websockets connection — Mattermost iOS app 8.1 High2023-07-17
CVE-2023-31190 Missing TLS (HTTPS) certificate validation during firmware update in DroneScout ds230 Remote ID receiver from BlueMark Innovations — ds230 8.1 High2023-07-11
CVE-2023-23546 Milesight UR32L 信任管理问题漏洞 — UR32L 4.2 Medium2023-07-06
CVE-2023-32464 Dell VxRail 信任管理问题漏洞 — Dell EMC VxRail Appliance 2.7 Low2023-06-23
CVE-2023-29175 Fortinet FortiOS 信任管理问题漏洞 — FortiOS 4.4 Medium2023-06-13
CVE-2023-1664 Red Hat Keycloak 信任管理问题漏洞 — Keycloak 8.2 -2023-05-26
CVE-2023-28321 curl 信任管理问题漏洞 — https://github.com/curl/curl 5.3 -2023-05-26
CVE-2023-20881 Cloud Foundry CAPI 信任管理问题漏洞 — Cloud Controller API 7.4 -2023-05-19

Vulnerabilities classified as CWE-295 (证书验证不恰当) represent 462 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.