Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-295 (证书验证不恰当) — Vulnerability Class 462

462 vulnerabilities classified as CWE-295 (证书验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-25160 Alist has Insecure TLS Config — alist 9.1 Critical2026-02-04
CVE-2026-24935 An improper certificate validation vulnerability was found in a third-party NAT traversal module. — ADM 8.1AIHighAI2026-02-03
CVE-2026-24934 An improper certificate validation vulnerability was found in ADM while querying an external server for the device's WAN IP address. — ADM 3.7AILowAI2026-02-03
CVE-2026-24933 An improper certificate validation vulnerability was found in ADM while sending HTTPS requests to the server. — ADM 5.9AIMediumAI2026-02-03
CVE-2026-24932 An improper certificate validation vulnerability was found in ADM while updating the DDNS settings. — ADM 7.4AIHighAI2026-02-03
CVE-2026-1778 TLS disabled by default in select aws/sagemaker-python-sdk configurations — SageMaker Python SDK 5.9 Medium2026-02-02
CVE-2026-1530 Fog-kubevirt: fog-kubevirt: man-in-the-middle vulnerability due to disabled certificate validation — Red Hat Satellite 6.16 for RHEL 8 8.1 High2026-02-02
CVE-2026-1531 Foreman-kubevirt: foreman_kubevirt: man-in-the-middle due to insecure default ssl verification — Red Hat Satellite 6.16 for RHEL 8 8.1 High2026-02-02
CVE-2025-53869 Brother Industries Brother MFPs 信任管理问题漏洞 — Multiple MFPs 3.7 Low2026-01-29
CVE-2025-32057 Misconfigured SSL/TLS communication of Redbend service for Infotainment ECU — Infotainment system ECU 6.5 Medium2026-01-22
CVE-2025-27377 Missing Validation of Self-Signed Certificates in Altium Designer Allows Man-in-the-Middle Attacks — Altium Designer 5.3 Medium2026-01-22
CVE-2025-11043 Improper Server Certificate Validation in Automation Studio — B&R Automation Studio 7.4 High2026-01-19
CVE-2026-22250 wlc can skip SSL verification — wlc 2.5 Low2026-01-12
CVE-2025-71063 Errands 信任管理问题漏洞 — Errands 8.2 High2026-01-12
CVE-2025-66001 NeuVector OpenID Connect is vulnerable to man-in-the-middle (MITM) — neuvector 8.8 High2026-01-08
CVE-2025-69412 messagelib 信任管理问题漏洞 — messagelib 3.4 Low2025-12-31
CVE-2025-52598 Insufficient certificate validation — QNV-C8012 9.8 -2025-12-26
CVE-2025-13052 An improper certificates validation vulnerability was found in the Notification settings of ADM — ADM 5.3AIMediumAI2025-12-12
CVE-2025-40801 Siemens多款产品 信任管理问题漏洞 — COMOS V10.6 8.1 High2025-12-09
CVE-2025-40800 Siemens多款产品 信任管理问题漏洞 — COMOS V10.6 7.4 High2025-12-09
CVE-2025-66491 Traefik has Inverted TLS Verification Logic in its ingress-nginx Provider — traefik 5.9 Medium2025-12-09
CVE-2025-12893 Improper Certificate Validation May Allow Successful TLS Handshaking Despite Invalid Extended Key Usage Fields in MongoDB Server — MongoDB Server 4.2 Medium2025-11-25
CVE-2025-44018 GL-Inet GL-AXT1800 安全漏洞 — GL-AXT1800 8.3 High2025-11-24
CVE-2025-60022 KDDI デジラアプリ App for iOS 信任管理问题漏洞 — 'デジラアプリ' App for iOS 7.4AIHighAI2025-11-17
CVE-2025-65083 GoSign Desktop 信任管理问题漏洞 — GoSign Desktop 3.2 Low2025-11-17
CVE-2025-30669 Zoom Workplace Clients - Improper Certificate Validation — Zoom Workplace Clients 4.8 Medium2025-11-13
CVE-2025-12047 Lenovo Scanner Pro 安全漏洞 — Scanner Pro 5.3 Medium2025-11-12
CVE-2025-10495 Lenovo多款产品 安全漏洞 — App Store 7.5 High2025-11-12
CVE-2025-40744 Siemens Solid Edge SE2025 信任管理问题漏洞 — Solid Edge SE2025 7.5 High2025-11-11
CVE-2025-12943 Improper certificate validation in firmware update logic in NETGEAR RAX30 and RAXE300 — RAX30 9.8 -2025-11-11

Vulnerabilities classified as CWE-295 (证书验证不恰当) represent 462 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.