Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-347 (密码学签名的验证不恰当) — Vulnerability Class 357

357 vulnerabilities classified as CWE-347 (密码学签名的验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-40592 Fortinet FortiClient 数据伪造问题漏洞 — FortiClientMac 6.8 High2024-11-12
CVE-2024-49394 Mutt: neomutt: in-reply-to email header field it not protected by cryptograpic signing 5.3 Medium2024-11-12
CVE-2024-49393 Mutt: neomutt: to and cc email header fields are not protected by cryptographic signing 6.5 Medium2024-11-12
CVE-2024-47073 Dataease arbitrary interface access vulnerability — dataease 9.1AICriticalAI2024-11-07
CVE-2024-51526 Huawei HarmonyOS 安全漏洞 — HarmonyOS 8.2 High2024-11-05
CVE-2024-50347 Laravel Reverb has Missing API Signature Verification — reverb 5.3 -2024-10-31
CVE-2024-8036 Unauthorized Modifications of Firmware and Configuration — Relion Protection Relays RE_611 IEC 5.9 Medium2024-10-25
CVE-2024-47943 Improper signature verification of firmware upgrade files — IoT Interface & CMC III Processing Unit 9.8 -2024-10-15
CVE-2024-8531 Schneider Electric Data Center Expert 数据伪造问题漏洞 — Data Center Expert 7.2 High2024-10-11
CVE-2024-9487 An Improper Verification of Cryptographic Signature vulnerability was identified in GitHub Enterprise Server that allowed SAML SSO authentication to be bypassed when the encrypted assertions feature was enabled — Enterprise Server 9.8AICriticalAI2024-10-10
CVE-2024-47832 XML Signature Bypass via differential XML parsing in ssoready — ssoready 8.1AIHighAI2024-10-09
CVE-2024-23960 Alpine Halo9 Improper Verification of Cryptographic Signature Vulnerability — Halo9 4.6 Medium2024-09-28
CVE-2024-7479 Improper signature verification of VPN driver installation in TeamViewer Remote Clients — Remote Full Client 8.8 High2024-09-25
CVE-2024-7481 Improper signature verification of Printer driver installation in TeamViewer Remote Clients — Remote Full Client 8.8 High2024-09-25
CVE-2024-8698 Keycloak-saml-core: improper verification of saml responses leading to privilege escalation in keycloak 7.7 High2024-09-19
CVE-2024-7788 Signatures in "repair mode" should not be trusted — LibreOffice 7.8 High2024-09-17
CVE-2024-45607 whatsapp-api-js fails to validate message's signature — whatsapp-api-js 5.8 Medium2024-09-12
CVE-2024-45409 The Ruby SAML library vulnerable to a SAML authentication bypass via Incorrect XPath selector — ruby-saml 10.0 Critical2024-09-10
CVE-2024-6800 GitHub Enterprise Server 安全漏洞 — GitHub Enterprise Server 9.8AICriticalAI2024-08-20
CVE-2023-28806 Signature validation error in DLL allows disabling anti-tampering protection — Client Connector 5.7 Medium2024-08-06
CVE-2024-23460 Incorrect signature validation of package — Client Connector 6.4 Medium2024-08-06
CVE-2024-23456 Signature validation issue leads to Anti-Tampering bypass — Client Connector 7.8 High2024-08-06
CVE-2024-5912 Cortex XDR Agent: Improper File Signature Verification Checks — Cortex XDR Agent 8.4AIHighAI2024-07-10
CVE-2024-38069 Windows Enroll Engine Security Feature Bypass Vulnerability — Windows 10 Version 1809 7.0 High2024-07-09
CVE-2023-34435 Realtek rtl819x Jungle SDK 数据伪造问题漏洞 — WBR-6013 7.2 High2024-07-08
CVE-2024-37532 IBM WebSphere Application Server identity spoofing — WebSphere Application Server 8.8 High2024-06-20
CVE-2024-37886 Nextcloud user_oidc's ID4me does not validate signature or expiration — security-advisories 5.4 Medium2024-06-14
CVE-2024-2451 Improper fingerprint validation in the TeamViewer Client — Remote (Full Client) 6.4 Medium2024-05-28
CVE-2024-1721 HYPR 安全漏洞 — Passwordless 7.7AIHighAI2024-05-21
CVE-2024-27244 Zoom Workplace VDI App for Windows - Insufficient Verification of Data Authenticity — Zoom Workplace VDI App for Windows 6.7 Medium2024-05-15

Vulnerabilities classified as CWE-347 (密码学签名的验证不恰当) represent 357 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.