Weaknesses of type CWE-295

685 results

CVE-2023-20963HIGHIn WorkSource, there is a possible parcel mismatch. This could lead to local escalation of privilege with no additional execution privilegesEPSS 1.4%KEV CVE-2020-10925HIGHThis vulnerability allows network-adjacent attackers to compromise the integrity of downloaded information on affected installations of NETGEPSS 1.4%CVE-2017-2648MEDIUMIt was found that jenkins-ssh-slaves-plugin before version 1.15 did not perform host key verification, thereby enabling Man-in-the-Middle atEPSS 1.4%CVE-2021-37698HIGHMissing TLS service certificate validation in GelfWriter, ElasticsearchWriter, InfluxdbWriter and Influxdb2WriterEPSS 1.4%CVE-2017-2629MEDIUMcurl before 7.53.0 has an incorrect TLS Certificate Status Request extension feature that asks for a fresh proof of the server's certificateEPSS 1.4%CVE-2023-28093HIGHA user with a compromised configuration can start an unsigned binary as a service.EPSS 1.4%CVE-2019-1010275—helm Before 2.7.2 is affected by: CWE-295: Improper Certificate Validation. The impact is: Unauthorized clients could connect to the server EPSS 1.4%CVE-2022-47758CRITICALNanoleaf firmware v7.1.1 and below is missing TLS verification, allowing attackers to execute arbitrary code via a DNS hijacking attack.EPSS 1.3%CVE-2021-29504CRITICALImproper Certificate Validation in WP-CLI frameworkEPSS 1.3%CVE-2016-9952HIGHThe verify_certificate function in lib/vtls/schannel.c in libcurl 7.30.0 through 7.51.0, when built for Windows CE using the schannel TLS baEPSS 1.3%CVE-2017-3194—Pandora iOS app prior to version 8.3.2 fails to properly validate SSL certificates provided by HTTPS connections, which may enable an attackEPSS 1.3%CVE-2019-1748HIGHCisco IOS and IOS XE Software Network Plug-and-Play Agent Certificate Validation VulnerabilityEPSS 1.2%CVE-2020-10059MEDIUMUpdateHub Module Explicitly Disables TLS VerificationEPSS 1.2%CVE-2021-20230—A flaw was found in stunnel before 5.57, where it improperly validates client certificates when it is configured to use both redirect and veEPSS 1.2%CVE-2025-32989MEDIUMGnutls: vulnerability in gnutls sct extension parsingEPSS 1.2%CVE-2017-2639MEDIUMIt was found that CloudForms does not verify that the server hostname matches the domain name in the certificate when using a custom CA and EPSS 1.1%CVE-2022-1343MEDIUMOCSP_basic_verify may incorrectly verify the response signing certificateEPSS 1.1%CVE-2024-41996HIGHValidating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attEPSS 1.1%CVE-2024-43550HIGHWindows Secure Channel Spoofing VulnerabilityEPSS 1.1%CVE-2022-21654HIGHIncorrect configuration handling allows TLS session re-use without re-validation in EnvoyEPSS 1.1%

← previouspage 3 / 35next →