Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-295 (证书验证不恰当) — Vulnerability Class 462

462 vulnerabilities classified as CWE-295 (证书验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-45458 Acronis Agent和Acronis Cyber Protect 信任管理问题漏洞 — Acronis Agent 9.1 -2023-05-18
CVE-2022-45457 Acronis Agent和Acronis Cyber Protect 信任管理问题漏洞 — Acronis Agent 9.1 -2023-05-18
CVE-2023-31151 Improper Certificate Validation — SEL-3505 4.7 Medium2023-05-10
CVE-2022-39161 IBM WebSphere Application Server information disclosure — WebSphere Application Server 4.8 Medium2023-05-03
CVE-2023-24461 BIG-IP Edge Client for Windows and macOS vulnerability — BIG-IP Edge Client 7.4 High2023-05-03
CVE-2022-48186 Lenovo Baiying 信任管理问题漏洞 — Baiying 6.2 Medium2023-05-01
CVE-2023-22642 Fortinet FortiManager 信任管理问题漏洞 — FortiAnalyzer 6.8 High2023-04-11
CVE-2023-28093 Pegasystem Synchronization Engine 信任管理问题漏洞 — RPA: Synchronization Engine 6.5 -2023-04-10
CVE-2023-29000 Nextcloud Desktop client does not verify received singed certificate in end-to-end encryption — security-advisories 5.4 Medium2023-04-04
CVE-2022-27644 NETGEAR R6700v3 信任管理问题漏洞 — R6700v3 8.1 -2023-03-29
CVE-2021-21548 Dell EMC Unisphere for PowerMax信任管理问题漏洞 — Unisphere for PowerMax, Dell EMC Unisphere for PowerMax Virtual Appliance , PowerMax OS 7.4 High2023-03-17
CVE-2022-4895 Man-in-the-middle attack Vulnerability in Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center Analyzer — Hitachi Infrastructure Analytics Advisor 8.6 High2023-02-28
CVE-2022-39948 Fortinet FortiOS 信任管理问题漏洞 — FortiProxy 4.4 Medium2023-02-16
CVE-2022-34404 Dell System Update 信任管理问题漏洞 — System Update 6.5 Medium2023-02-10
CVE-2022-3913 Rapid7 Nexpose Certificate Validation Issue — Nexpose 5.3 Medium2023-02-01
CVE-2022-45100 Dell PowerScale OneFS 信任管理问题漏洞 — PowerScale OneFS 8.1 High2023-02-01
CVE-2022-32748 Schneider Electric EcoStruxure Cybersecurity Admin Expert 信任管理问题漏洞 — EcoStruxure™ Cybersecurity Admin Expert (CAE) 7.9 High2023-01-30
CVE-2023-0509 Improper Certificate Validation in pyload/pyload — pyload/pyload 7.4 -2023-01-26
CVE-2022-32531 Apache BookKeeper: Java Client Uses Connection to Host that Failed Hostname Verification — Apache BookKeeper 5.9 -2022-12-15
CVE-2022-46153 Routes exposed with an empty TLSOption in traefik — traefik 8.1 High2022-12-08
CVE-2022-39334 nextcloudcmd incorrectly trusts bad TLS certificates — security-advisories 3.9 Low2022-11-25
CVE-2022-33684 Apache Pulsar C++/Python OAuth Clients prior to 3.0.0 were vulnerable to an MITM attack due to Disabled Certificate Validation — Apache Pulsar 8.1 -2022-11-04
CVE-2022-40147 Siemens Industrial Edge Management 信任管理问题漏洞 — Industrial Edge Management 7.4 -2022-10-11
CVE-2022-34394 Dell SmartFabric OS10 信任管理问题漏洞 — Dell Networking OS10 3.7 Low2022-09-28
CVE-2022-39264 nheko vulnerable to secret poisoning using MITM on secret requests by the homeserver — nheko 8.6 High2022-09-28
CVE-2022-33683 Disabled Certificate Validation makes Broker, Proxy Admin Clients vulnerable to MITM attack — Apache Pulsar 5.9 -2022-09-23
CVE-2022-33682 Disabled Hostname Verification makes Brokers, Proxies vulnerable to MITM attack — Apache Pulsar 5.9 -2022-09-23
CVE-2022-33681 Improper Hostname Verification in Java Client and Proxy can expose authentication data via MITM — Apache Pulsar 5.9 -2022-09-23
CVE-2022-1632 Red Hat Openshift 信任管理问题漏洞 — Openshift 6.5 -2022-09-01
CVE-2022-2996 python-scciclient 信任管理问题漏洞 — python-scciclient 7.4 -2022-09-01

Vulnerabilities classified as CWE-295 (证书验证不恰当) represent 462 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.