Weaknesses of type CWE-295
687 resultsCVE-2025-9785HIGHMisconfigured certificate validation with self-signed certificates for Print DeployEPSS 0.1%CVE-2026-27221MEDIUMAcrobat Reader | Improper Certificate Validation (CWE-295)EPSS 0.1%CVE-2026-45170HIGHIdira Vendor PAM - Self-Hosted Connector: Potential Security Bypass due to Incomplete TLS Certificate ValidationEPSS 0.1%CVE-2025-58123MEDIUMLack of TLS validation in plugin BGP Monitoring on Checkmk ExchangeEPSS 0.1%CVE-2025-1002MEDIUMMicroDicom DICOM Viewer Improper Certificate ValidationEPSS 0.1%CVE-2025-58127MEDIUMLack of TLS validation in plugin Dell Powerscale on Checkmk ExchangeEPSS 0.1%CVE-2025-58126MEDIUMLack of TLS validation in plugin VMware vSAN on Checkmk ExchangeEPSS 0.1%CVE-2026-44363MEDIUMUnsafe remote resource fetching in expansion misp-modulesEPSS 0.1%CVE-2025-58125MEDIUMLack of TLS validation in plugin Freebox v6 agent on Checkmk ExchangeEPSS 0.1%CVE-2025-58124MEDIUMLack of TLS validation in plugin check-mk-api on Checkmk ExchangeEPSS 0.1%CVE-2026-39388LOWOpenBao's Certificate Authentication Allows Token Renewal With Different CertificateEPSS 0.1%CVE-2025-20215MEDIUMCisco Webex Meeting Client Join Certificate Validation VulnerabilityEPSS 0.1%CVE-2026-39984MEDIUMSigstore Timestamp Authority has Improper Certificate Validation in verifierEPSS 0.1%CVE-2026-41859HIGHA network man-in-the-middle between nats-sync and the BOSH director can steal the director credentials (Basic auth header or UAA client secrEPSS 0.1%CVE-2026-31798MEDIUMJumpServer Improper Certificate Validation in Custom SMS API ClientEPSS 0.1%CVE-2024-38642LOWQuMagieEPSS 0.1%CVE-2026-44305MEDIUMLemur: LDAP TLS certificate verification globally disabled enables credential interceptionEPSS 0.1%CVE-2025-30669MEDIUMZoom Workplace Clients - Improper Certificate ValidationEPSS 0.1%CVE-2025-12893LOWImproper Certificate Validation May Allow Successful TLS Handshaking Despite Invalid Extended Key Usage Fields in MongoDB ServerEPSS 0.1%CVE-2025-6026LOWAn improper certificate validation vulnerability was reported in the Lenovo Universal Device Client (UDC) that could allow a user capable ofEPSS 0.1%