Weaknesses of type CWE-295
686 resultsCVE-2023-49567HIGHInsecure Trust of certificates using collision hash functions in Bitdefender Total Security HTTPS Scanning (VA-11239)EPSS 0.2%CVE-2023-6058HIGHHTTPS Certificate Validation Issue in Bitdefender Safepay (VA-11167)EPSS 0.2%CVE-2026-3100HIGHAn improper certificate validation vulnerability was found in the FTP Backup on the ADM.EPSS 0.2%CVE-2025-10539MEDIUMImproper TLS Certificate Validation RCE via Malicious Update in DeskTime Time Tracking AppEPSS 0.2%CVE-2026-32627HIGHcpp-httplib has a Silent TLS Certificate Verification Bypass on HTTPS Redirect via ProxyEPSS 0.2%CVE-2024-43107HIGHImproper Certificate Validation (CWE-295) in the Gallagher Milestone Integration Plugin (MIP) permits unauthenticated messages (e.g. alarm eEPSS 0.2%CVE-2024-54147MEDIUMAltair GraphQL Client's desktop app does not validate HTTPS certificatesEPSS 0.2%CVE-2025-62371HIGHOpenSearch Data Prepper plugins trusts all SSL certificates by defaultEPSS 0.2%CVE-2024-41724HIGHImproper Certificate Validation (CWE-295) in the Gallagher Command Centre SALTO integration allowed an attacker to spoof the SALTO server.
EPSS 0.2%CVE-2026-35389HIGHBulwark Webmail S/MIME signature verification accepted self-signed certificatesEPSS 0.2%CVE-2025-33099MEDIUMIBM Concert Software information disclosureEPSS 0.2%CVE-2024-8287HIGHAnbox Management Service, in versions 1.17.0 through 1.23.0, does not validate the TLS certificate provided to it by the Anbox Stream Agent.EPSS 0.2%CVE-2022-34404MEDIUM
Dell System Update, version 2.0.0 and earlier, contains an Improper Certificate Validation in data parser module. A local attacker with higEPSS 0.2%CVE-2024-12174LOWAn Improper Certificate Validation vulnerability exists in Tenable Security Center where an authenticated, privileged attacker could interceEPSS 0.2%CVE-2026-42312MEDIUMpyload-ng: non-admin SETTINGS users can disable outbound TLS peer verificationEPSS 0.2%CVE-2025-27377MEDIUMMissing Validation of Self-Signed Certificates in Altium Designer Allows Man-in-the-Middle AttacksEPSS 0.2%CVE-2026-48247HIGHOpen ISES Tickets < 3.44.2 Disabled TLS Certificate Verification in incs/functions.inc.phpEPSS 0.2%CVE-2025-39205HIGHA vulnerability exists in the IEC 61850 in MicroSCADA X SYS600 product. The certificate validation of the TLS protocol allows remote Man-in-EPSS 0.2%CVE-2024-31853HIGHA vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.11). During establishment of a https connection to the TLS serveEPSS 0.2%CVE-2024-31854HIGHA vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.11). During establishment of a https connection to the TLS serveEPSS 0.2%