Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-295 (证书验证不恰当) — Vulnerability Class 462

462 vulnerabilities classified as CWE-295 (证书验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-47258 2N Access Commander 安全漏洞 — 2N Access Commander 8.1 High2025-02-06
CVE-2024-23928 Pioneer DMH-WT7600NEX Telematics Improper Certificate Validation — DMH-WT7600NEX 6.5 Medium2025-01-31
CVE-2024-23970 ChargePoint Home Flex Improper Certificate Validation — Home Flex 6.5 Medium2025-01-30
CVE-2023-38009 IBM Cognos Analytics Mobile information disclosure — Cognos Analytics Mobile 4.2 Medium2025-01-26
CVE-2024-52330 ECOVACS lawnmowers and vacuums do not properly validate TLS certificates — DEEBOT X5 PRO PLUS 7.4 High2025-01-23
CVE-2024-52329 ECOVACS HOME mobile app plugins do not properly validate TLS certificates — ECOVACS HOME 7.4 High2025-01-23
CVE-2024-42186 HCL BigFix Patch Download Plug-ins are affected by an insecure protocol support — BigFix Patch Management Download Plug-ins 2.8 Low2025-01-23
CVE-2025-0501 Issue affecting Amazon WorkSpaces Clients (when running PCoIP protocol) — WorkSpaces Client 7.5 High2025-01-15
CVE-2025-0500 Issue affecting Amazon WorkSpaces (when running Amazon DCV protocol), Amazon AppStream 2.0, and Amazon DCV clients — WorkSpaces Client 7.5 High2025-01-15
CVE-2025-20126 Cisco ThousandEyes Endpoint Agent Certificate Validation Vulnerability — Cisco ThousandEyes Endpoint Agent 4.8 Medium2025-01-08
CVE-2024-40702 IBM Cognos Controller improper certificate validation — Controller 8.2 High2025-01-07
CVE-2024-56521 TCPDF 安全漏洞 — tcpdf 5.3 -2024-12-27
CVE-2024-47119 IBM Storage Defender - Resiliency Service improper certificate validation — Storage Defender - Resiliency Service 5.9 Medium2024-12-18
CVE-2024-6001 Lenovo Display Control Center和Lenovo Accessories and Display Manager 安全漏洞 — Accessories and Display Manager 8.1 High2024-12-16
CVE-2024-4762 Lenovo Display Control Center和Lenovo Accessories and Display Manager 安全漏洞 — Accessories and Display Manager 7.8 High2024-12-16
CVE-2024-12174 Tenable Security Center 安全漏洞 — Security Center 2.7 Low2024-12-09
CVE-2024-54147 Altair GraphQL Client's desktop app does not validate HTTPS certificates — altair 6.8 Medium2024-12-09
CVE-2024-48865 QTS, QuTS hero — QTS 9.8 -2024-12-06
CVE-2024-53846 ssl fails to validate incorrect extened key usage — otp 5.5 Medium2024-12-05
CVE-2024-5921 GlobalProtect App: Insufficient Certificate Validation Leads to Privilege Escalation — GlobalProtect App 8.0AIHighAI2024-11-27
CVE-2023-51634 NETGEAR RAX30 Improper Certificate Validation Remote Code Execution Vulnerability — RAX30 8.8 -2024-11-22
CVE-2024-52510 Nextcloud Desktop client behaves incorrectly if the initial end-to-end-encryption signature is empty — security-advisories 4.2 Medium2024-11-15
CVE-2022-20814 Cisco Expressway Series and Cisco TelePresence VCS Improper Certificate Validation Vulnerability — Cisco TelePresence Video Communication Server (VCS) Expressway 7.4 High2024-11-15
CVE-2024-5918 PAN-OS: Improper Certificate Validation Enables Impersonation of a Legitimate GlobalProtect User — Cloud NGFW 8.1AIHighAI2024-11-14
CVE-2024-49369 Icinga 2 has a TLS Certificate Validation Bypass for JSON-RPC and HTTP API Connections — icinga2 9.8 Critical2024-11-12
CVE-2024-30149 HCL AppScan Source is affected by an expired TLS/SSL certificate — AppScan Source 4.8 Medium2024-10-31
CVE-2024-43177 IBM Concert improper certificate validation — Concert 5.9 Medium2024-10-22
CVE-2024-47241 Dell Secure Connect Gateway 信任管理问题漏洞 — Secure Connect Gateway (SCG) 5.0 Appliance - SRS 5.5 Medium2024-10-18
CVE-2023-49570 Insecure Trust of Basic Constraints certificate in Bitdefender Total Security HTTPS Scanning (VA-11210) — Total Security 7.4 -2024-10-18
CVE-2023-49567 Insecure Trust of certificates using collision hash functions in Bitdefender Total Security HTTPS Scanning (VA-11239) — Total Security 7.4 -2024-10-18

Vulnerabilities classified as CWE-295 (证书验证不恰当) represent 462 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.