Weaknesses of type CWE-295
686 resultsCVE-2024-27440MEDIUMThe Toyoko Inn official App for iOS versions prior to 1.13.0 and Toyoko Inn official App for Android versions prior 1.3.14 don't properly veEPSS 0.2%CVE-2025-33031HIGHFile Station 5EPSS 0.2%CVE-2023-4801HIGHITM MacOS Agent Improper Certificate ValidationEPSS 0.2%CVE-2026-23776HIGHDell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.5, LTS2025 release verEPSS 0.2%CVE-2025-7395CRITICALDomain Name Validation Bypass with Apple Native Certificate ValidationEPSS 0.2%CVE-2025-11619HIGHImproper certificate validation when connecting to gateways in Devolutions Server 2025.3.2 and earlier allows attackers in MitM position to EPSS 0.2%CVE-2025-56231CRITICALTonec Internet Download Manager 6.42.41.1 and earlier suffers from Missing SSL Certificate Validation, which allows attackers to bypass updaEPSS 0.2%CVE-2024-50691HIGHSunGrow iSolarCloud Android app V2.1.6.20241104 and prior suffers from Missing SSL Certificate Validation. The app explicitly ignores certifEPSS 0.2%CVE-2025-59353HIGHManager generates mTLS certificates for arbitrary IP addressesEPSS 0.2%CVE-2024-42193LOWHCL BigFix Web Reports is susceptible to a Man-In-The-Middle (MITM) attackEPSS 0.2%CVE-2025-44018HIGHA firmware downgrade vulnerability exists in the OTA Update functionality of GL-Inet GL-AXT1800 4.7.0. A specially crafted .tar file can leaEPSS 0.2%CVE-2023-6056HIGHInsecure Trust of Self-Signed Certificates in Bitdefender Total Security HTTPS Scanning (VA-11164)EPSS 0.2%CVE-2024-31340MEDIUMTP-Link Tether versions prior to 4.5.13 and TP-Link Tapo versions prior to 3.3.6 do not properly validate certificates, which may allow a reEPSS 0.2%CVE-2023-6057HIGHInsecure Trust of DSA-Signed Certificates in Bitdefender Total Security HTTPS Scanning (VA-11166)EPSS 0.2%CVE-2024-11621HIGHMissing certificate validation in Devolutions Remote Desktop Manager on macOS, iOS, Android, Linux allows an attacker to intercept and modifEPSS 0.2%CVE-2023-47537MEDIUMAn improper certificate validation vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2.6, FortiOS 7.0.0 throughEPSS 0.2%CVE-2025-15573CRITICALMissing Certificate Validation for Solax Power Pocket WiFi models MQTT Cloud ConnectionEPSS 0.2%CVE-2025-15612MEDIUMWazuh Provisioning Scripts / Build Infrastructure Improper Certificate Validation leading to MITM and RCEEPSS 0.2%CVE-2025-3218MEDIUMIBM i improper certificate validationEPSS 0.2%CVE-2026-23998HIGHFleet has a Windows MDM management endpoint authentication bypassEPSS 0.2%