Falhas do tipo CWE-347
473 resultadosCVE-2025-43185MEDIUMA downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.6. An app may be able to EPSS 0.1%CVE-2026-42743MEDIUMWordPress Masteriyo - LMS plugin <= 2.1.8 - Broken Authentication vulnerabilityEPSS 0.1%CVE-2025-40934CRITICALXML-Sig prior to 0.68 for Perl improperly validates XML without signaturesEPSS 0.1%CVE-2026-1568CRITICALRapid7 InsightVM Signature Validation VulnerabilityEPSS 0.1%CVE-2026-34155HIGHRAUC: Improper Signing of Plain Bundles Exceeding 2 GiBEPSS 0.1%CVE-2026-22817HIGHJWT Algorithm Confusion via Unsafe Default (HS256) in Hono JWT Middleware Allows Token Forgery and Auth BypassEPSS 0.1%CVE-2022-28751HIGHLocal Privilege Escalation in Zoom Client for Meetings for MacOSEPSS 0.1%CVE-2024-54126HIGHInsufficient Integrity Verification Vulnerability in TP-Link Archer C50EPSS 0.1%CVE-2026-41694LOWSAML Payloads Decrypted Without Valid SignatureEPSS 0.1%CVE-2025-34500HIGHShuffle Master Deck Mate 2 Insecure Update ChainEPSS 0.1%CVE-2026-20699MEDIUMA downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS EPSS 0.1%CVE-2022-1739MEDIUM2.2.1 IMPROPER VERIFICATION OF CRYPTOGRAPHIC SIGNATURE CWE-347EPSS 0.1%CVE-2023-38418HIGHBIG-IP Edge Client for macOS vulnerabilityEPSS 0.1%CVE-2026-49454CRITICALRelyra SAML SignatureValue not cryptographically verified -> authentication bypassEPSS 0.1%CVE-2026-40070HIGHbsv-sdk and bsv-wallet persist unverified certifier signatures in acquire_certificate (direct and issuance paths)EPSS 0.1%CVE-2023-34120HIGHImproper privilege management in Zoom for Windows, Zoom Rooms for Windows, and Zoom VDI for Windows clients before 5.14.0 may allow an authEPSS 0.1%CVE-2020-36843MEDIUMThe implementation of EdDSA in EdDSA-Java (aka ed25519-java) through 0.3.0 exhibits signature malleability and does not satisfy the SUF-CMA EPSS 0.1%CVE-2026-25793HIGHNebula Has Possible Blocklist Bypass via ECDSA Signature MalleabilityEPSS 0.1%CVE-2026-1237LOWVulnerable cross-model authorization in juju. If a charm's cross-model permissions are revoked or expire, a malicious user who is able to upEPSS 0.1%CVE-2024-40592MEDIUMAn improper verification of cryptographic signature vulnerability [CWE-347] in FortiClient MacOS version 7.4.0, version 7.2.4 and below, verEPSS 0.1%