Falhas do tipo CWE-295
685 resultadosCVE-2022-31105HIGHArgo CD's certificate verification is skipped for connections to OIDC providersEPSS 0.6%CVE-2022-31183CRITICALmTLS client verification is skipped in fs2 on Node.jsEPSS 0.6%CVE-2021-21571MEDIUMDell UEFI BIOS https stack leveraged by the Dell BIOSConnect feature and Dell HTTPS Boot feature contains an improper certificate validationEPSS 0.6%CVE-2024-29733LOWApache Airflow FTP Provider: FTP_TLS instance with unverified SSL contextEPSS 0.6%CVE-2022-24901HIGHAuthentication bypass and denial of service (DoS) vulnerabilities in Apple Game Center auth adapter EPSS 0.6%CVE-2022-39264HIGHnheko vulnerable to secret poisoning using MITM on secret requests by the homeserverEPSS 0.6%CVE-2024-25141CRITICALApache Airflow Mongo Provider: Certificate validation isn't respected even if SSL is enabled for apache-airflow-providers-mongoEPSS 0.6%CVE-2012-0955MEDIUMsoftware-properties incorrectly validated TLS certificatesEPSS 0.6%CVE-2020-5367HIGHDell EMC Unisphere for PowerMax versions prior to 9.1.0.17, Dell EMC Unisphere for PowerMax Virtual Appliance versions prior to 9.1.0.17, anEPSS 0.6%CVE-2023-39441—Apache Airflow SMTP Provider, Apache Airflow IMAP Provider, Apache Airflow: SMTP/IMAP client components allowed MITM due to missing Certificate ValidationEPSS 0.6%CVE-2023-23131HIGHSelfwealth iOS mobile App 3.3.1 is vulnerable to Insecure App Transport Security (ATS) Settings.EPSS 0.6%CVE-2025-23114CRITICALA vulnerability in Veeam Updater component allows Man-in-the-Middle attackers to execute arbitrary code on the affected server. This issue oEPSS 0.6%CVE-2019-0054MEDIUMJunos OS: SRX Series: An attacker may be able to perform Man-in-the-Middle (MitM) attacks during app-id signature updates.EPSS 0.6%CVE-2024-31872HIGHIBM Security Verify Access Appliance missing certificate validationEPSS 0.6%CVE-2024-31871HIGHIBM Security Verify Access Appliance improper certificate validationEPSS 0.6%CVE-2013-10001MEDIUMHTC One/Sense Mail Client certificate validationEPSS 0.6%CVE-2022-33682MEDIUMDisabled Hostname Verification makes Brokers, Proxies vulnerable to MITM attackEPSS 0.6%CVE-2024-13990CRITICALMicroWorld eScan AV Insecure Update Mechanism Allows Man-in-the-Middle Replacement of UpdatesEPSS 0.6%CVE-2021-46880CRITICALx509/x509_verify.c in LibreSSL before 3.4.2, and OpenBSD before 7.0 errata 006, allows authentication bypass because an error for an unverifEPSS 0.6%CVE-2022-24319—A CWE-295: Improper Certificate Validation vulnerability exists that could allow a Man-in-theMiddle attack when communications between the cEPSS 0.6%