Fallos del tipo CWE-295

685 resultados
CVE-2026-5194CRITICALwolfSSL ECDSA Certificate VerificationEPSS 0.5%CVE-2023-51837CRITICALYlianst MeshCentral 1.1.16 is vulnerable to Missing SSL Certificate Validation.EPSS 0.5%CVE-2024-29072HIGHA privilege escalation vulnerability exists in the Foxit Reader 2024.2.0.25138. The vulnerability occurs due to improper certification validEPSS 0.5%CVE-2021-22138In Logstash versions after 6.4.0 and before 6.8.15 and 7.12.0 a TLS certificate validation flaw was found in the monitoring feature. When spEPSS 0.5%CVE-2021-34599HIGHImproper Certificate Validation in CODESYS GitEPSS 0.5%CVE-2023-30516MEDIUMJenkins Image Tag Parameter Plugin 2.0 improperly introduces an option to opt out of SSL/TLS certificate validation when connecting to DockeEPSS 0.5%CVE-2022-20860HIGHCisco Nexus Dashboard SSL Certificate Validation VulnerabilityEPSS 0.5%CVE-2023-23901MEDIUMImproper following of a certificate's chain of trust exists in SkyBridge MB-A200 firmware Ver. 01.00.05 and earlier, and SkyBridge BASIC MB-EPSS 0.5%CVE-2026-42213MEDIUMSolidCAM-GPPL-IDE: Path traversal in `inc` directive enables file probing and NTLM-hash leakEPSS 0.5%CVE-2020-6781MEDIUMImproper Certificate Validation in Bosch Smart Home System App for iOSEPSS 0.5%CVE-2024-45234HIGHAn issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync oEPSS 0.5%CVE-2024-2048HIGHVault Cert Auth Method Did Not Correctly Validate Non-CA CertificatesEPSS 0.4%CVE-2024-54846MEDIUMAn issue in CP Plus CP-VNR-3104 B3223P22C02424 allows attackers to obtain the EC private key and access sensitive data or execute a man-in-tEPSS 0.4%CVE-2024-54847MEDIUMAn issue in CP Plus CP-VNR-3104 B3223P22C02424 allows attackers to access the Diffie-Hellman (DH) parameters and access sensitive data or exEPSS 0.4%CVE-2026-25961HIGHSumatraPDF Update MITM -> Arbitrary Code ExecutionEPSS 0.4%CVE-2025-0501HIGHIssue affecting Amazon WorkSpaces Clients (when running PCoIP protocol)EPSS 0.4%CVE-2017-14806LOWInsecure handling of repodata and packages in SUSE Studio onliteEPSS 0.4%CVE-2025-34235CRITICALVasion Print (formerly PrinterLogic) Weak SSL/TLS Certificate Validation RCEEPSS 0.4%CVE-2020-36658HIGHIn Apache::Session::LDAP before 0.5, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, beEPSS 0.4%CVE-2025-46070CRITICALAn issue in Automai BotManager v.25.2.0 allows a remote attacker to execute arbitrary code via the BotManager.exe componentEPSS 0.4%