Falhas do tipo CWE-295
687 resultadosCVE-2024-6156LOWMark Laing discovered that LXD's PKI mode, until version 5.21.2, could be bypassed if the client's certificate was present in the trust storEPSS 0.2%CVE-2026-22613MEDIUMThe server identity check mechanism for firmware upgrade performed via command shell is insecurely implemented potentially allowing an attacEPSS 0.2%CVE-2026-34073LOWcryptography has incomplete DNS name constraint enforcement on peer namesEPSS 0.2%CVE-2024-48865HIGHQTS, QuTS heroEPSS 0.2%CVE-2025-67601HIGHRancher CLI skips TLS verification on Rancher CLI login commandEPSS 0.2%CVE-2024-6219LOWMark Laing discovered in LXD's PKI mode, until version 5.21.1, that a restricted certificate could be added to the trust store with its restEPSS 0.2%CVE-2025-52919MEDIUMIn Yealink RPS before 2025-05-26, the certificate upload function does not properly validate certificate content, potentially allowing invalEPSS 0.2%CVE-2026-5263HIGHURI nameConstraints not enforced in ConfirmNameConstraints()EPSS 0.2%CVE-2023-50179MEDIUMAn improper certificate validation vulnerability [CWE-295] in FortiADC 7.4.0, 7.2 all versions, 7.1 all versions, 7.0 all versions may allowEPSS 0.2%CVE-2026-3822HIGHTaipower|Taipower APP(Android) - Improper Certificate ValidationEPSS 0.2%CVE-2024-40590MEDIUMAn improper certificate validation vulnerability [CWE-295] in FortiPortal version 7.4.0, version 7.2.4 and below, version 7.0.8 and below, vEPSS 0.2%CVE-2025-15323LOWTanium addressed an improper certificate validation vulnerability in Tanium Appliance.EPSS 0.2%CVE-2026-35207MEDIUMdeepinid plugin in dde-control-center is configured to skip TLS certificate verification when downloading avatar from remote serverEPSS 0.1%CVE-2024-4762HIGHAn improper validation vulnerability was reported in the firmware update mechanism of LADM and LDCC that could allow a local attacker to escEPSS 0.1%CVE-2026-44312MEDIUMcss_parser allows to MITM included https css urlsEPSS 0.1%CVE-2026-55960HIGHUn-negotiated Raw Public Key (RFC 7250) accepted in place of X.509, bypassing chain validationEPSS 0.1%CVE-2026-11310HIGHX.509 trust-chain bypass in wolfSSL_X509_verify_cert() via untrusted intermediate anchoringEPSS 0.1%CVE-2026-4396HIGHImproper certificate validation in Devolutions Hub Reporting Service
2025.3.1.1 and earlier allows a network attacker to perform a
man-in-EPSS 0.1%CVE-2026-11999HIGHX.509 trust-chain bypass via path-depth exhaustion in wolfSSL_X509_verify_cert()EPSS 0.1%CVE-2025-37730MEDIUMLogstash Improper Certificate Validation in TCP outputEPSS 0.1%