Falhas do tipo CWE-295
686 resultadosCVE-2024-30134MEDIUMHCL Traveler for Microsoft Outlook (HTMO) is susceptible to an application modification vulnerabilityEPSS 0.2%CVE-2025-2028MEDIUMLack of TLS validationEPSS 0.2%CVE-2024-41258MEDIUMAn issue was discovered in filestash v0.4. The usage of the ssh.InsecureIgnoreHostKey() disables host key verification, possibly allowing atEPSS 0.2%CVE-2025-10495HIGHA potential vulnerability was reported in the Lenovo PC Manager, Lenovo App Store, Lenovo Browser, and Lenovo Legion Zone client applicationEPSS 0.2%CVE-2026-24122LOWCosign Certificate Chain Expiry Validation Issue Allows Issuing Certificate Expiry to Be OverlookedEPSS 0.2%CVE-2024-32928MEDIUMThe libcurl CURLOPT_SSL_VERIFYPEER option was disabled on a subset of requests made by Nest production devices which enabled a potential manEPSS 0.2%CVE-2026-9259HIGHImproper validation of server certificates in Canon EOS Network Setting Tool Version 1.5.0 or earlierEPSS 0.2%CVE-2022-39334LOWnextcloudcmd incorrectly trusts bad TLS certificatesEPSS 0.2%CVE-2026-41132MEDIUMCKAN: No certificate validation on STMP connectionEPSS 0.2%CVE-2025-40744HIGHA vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 11). Affected applications do not properly validate cEPSS 0.2%CVE-2026-40557MEDIUMApache Storm Prometheus Reporter: Disabling TLS verification for Prometheus Reporter also disables it for all other connectionsEPSS 0.2%CVE-2023-38009MEDIUMIBM Cognos Analytics Mobile information disclosureEPSS 0.2%CVE-2023-29175MEDIUMAn improper certificate validation vulnerability [CWE-295] in FortiOS 6.2 all versions, 6.4 all versions, 7.0.0 through 7.0.10, 7.2.0 and FoEPSS 0.2%CVE-2026-45389HIGHIn OCaml-TLS before 2.1.0, the server implementation does insufficient checks of the certificate provided by the client (when doing client aEPSS 0.2%CVE-2026-34580CRITICALBotan has a certificate authentication bypass due to trust anchor confusionEPSS 0.2%CVE-2024-33509MEDIUMAn improper certificate validation vulnerability [CWE-295] in FortiWeb 7.2.0 through 7.2.1, 7.0 all versions, 6.4 all versions and 6.3 all vEPSS 0.2%CVE-2025-35434LOWCISA Thorium does not validate TLS connections to ElasticsearchEPSS 0.2%CVE-2026-0228LOWPAN-OS: Improper Validation of Terminal Server Agent CertificateEPSS 0.2%CVE-2025-48393MEDIUMThe server identity check mechanism for firmware upgrade performed via command shell is insecurely implemented potentially allowing an attacEPSS 0.2%CVE-2026-33753MEDIUMImproper Certificate Validation in rfc3161-clientEPSS 0.2%