Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-295 (证书验证不恰当) — Vulnerability Class 462

462 vulnerabilities classified as CWE-295 (证书验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-20080 MediaTek 芯片 安全漏洞 — MT2735, MT2737, MT6761, MT6765, MT6768, MT6781, MT6785, MT6789, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6880, MT6883, MT6885, MT6886, MT6889, MT6890, MT6891, MT6893, MT6895, MT6980, MT6983, MT6985, MT6989, MT6990, MT8666, MT8667, MT8673, MT8676, MT8678 9.8AICriticalAI2024-07-01
CVE-2024-25053 IBM Cognos Analytics improper certificate validation — Cognos Analytics 5.9 Medium2024-06-28
CVE-2024-5261 TLS certificate are not properly verified when utilizing LibreOfficeKit — LibreOffice 9.1AICriticalAI2024-06-25
CVE-2024-28021 Hitachi FOXMAN-UN 信任管理问题漏洞 — FOXMAN-UN 7.4 High2024-06-11
CVE-2024-35140 IBM Security Verify Access privilege escalation — Security Verify Access Docker 7.7 High2024-05-31
CVE-2024-29072 Foxit Reader 信任管理问题漏洞 — Foxit Reader 8.2 High2024-05-28
CVE-2024-35299 JetBrains YouTrack 安全漏洞 — YouTrack 5.9 Medium2024-05-16
CVE-2024-33612 BIG-IP Next Central Manager vulnerability — BIG-IP Next Central Manager 6.8 Medium2024-05-08
CVE-2023-35721 NETGEAR Multiple Routers curl_post Improper Certificate Validation Remote Code Execution Vulnerability — Multiple Routers 8.8 -2024-05-03
CVE-2024-4063 EZVIZ CS-C6-21WFR-8 Davinci Application certificate validation — CS-C6-21WFR-8 3.7 Low2024-04-23
CVE-2024-4062 Hualai Xiaofang iSC5 certificate validation — iSC5 3.7 Low2024-04-23
CVE-2024-29733 Apache Airflow FTP Provider: FTP_TLS instance with unverified SSL context — Apache Airflow FTP Provider 7.5 -2024-04-21
CVE-2024-3738 cym1102 nginxWebUI saveCmd handlePath certificate validation — nginxWebUI 7.3 High2024-04-13
CVE-2023-50949 IBM QRadar improper certificate validation — QRadar SIEM 5.9 Medium2024-04-11
CVE-2024-31871 IBM Security Verify Access Appliance improper certificate validation — Security Verify Access Appliance 7.5 High2024-04-10
CVE-2024-31872 IBM Security Verify Access Appliance missing certificate validation — Security Verify Access Appliance 7.5 High2024-04-10
CVE-2024-27323 PDF-XChange Editor Updater Improper Certificate Validation Remote Code Execution Vulnerability — PDF-XChange Editor 8.8 -2024-04-01
CVE-2024-29887 Serverpod client accepts any certificate — serverpod 7.4 High2024-03-27
CVE-2024-1351 MongoDB Server may allow successful untrusted connection — MongoDB Server 8.8 High2024-03-07
CVE-2024-2048 Vault Cert Auth Method Did Not Correctly Validate Non-CA Certificates — Vault 8.1 High2024-03-04
CVE-2023-47742 IBM QRadar Suite information dislosure — QRadar Suite Products 5.9 Medium2024-03-03
CVE-2024-25141 Apache Airflow Mongo Provider: Certificate validation isn't respected even if SSL is enabled for apache-airflow-providers-mongo — Apache Airflow Mongo Provider 7.5AIHighAI2024-02-20
CVE-2023-49250 Apache DolphinScheduler: Insecure TLS TrustManager used in HttpUtil — Apache DolphinScheduler 7.4AIHighAI2024-02-20
CVE-2023-47537 Fortinet FortiOS 信任管理问题漏洞 — FortiOS 4.4 Medium2024-02-15
CVE-2024-25642 Improper Certificate Validation in SAP Cloud Connector — SAP Cloud Connector 7.4 High2024-02-13
CVE-2023-47700 IBM Storage Virtualize improper certificate validation — Storage Virtualize 5.9 Medium2024-02-07
CVE-2023-43017 IBM Security Verify Access man in the middle — Security Verify Access Appliance 8.2 High2024-02-07
CVE-2023-32330 IBM Security Verify Access man in the middle — Security Verify Access Appliance 7.5 High2024-02-07
CVE-2024-1052 Boundary Vulnerable to Session Hijacking Through TLS Certificate Tampering — Boundary 8.0 High2024-02-05
CVE-2020-29504 Dell BSAFE Micro Edition Suite 安全漏洞 — BSAFE Crypto-C Micro Edition 7.4 High2024-02-02

Vulnerabilities classified as CWE-295 (证书验证不恰当) represent 462 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.