Weaknesses of type CWE-295
695 resultsCVE-2024-30149MEDIUMHCL AppScan Source is affected by an expired TLS/SSL certificateEPSS 0.2%CVE-2021-21559HIGHDell EMC NetWorker, versions 18.x, 19.1.x, 19.2.x 19.3.x, 19.4, and 19.4.0.1 contain an Improper Certificate Validation vulnerability in theEPSS 0.2%CVE-2025-20126MEDIUMCisco ThousandEyes Endpoint Agent Certificate Validation VulnerabilityEPSS 0.2%CVE-2026-48697HIGHFastNetMon Community Edition through 1.2.9 does not verify TLS certificates on outbound HTTPS connections. The execute_web_request_secure() EPSS 0.2%CVE-2024-9160MEDIUMSecurity Misconfiguration in Forge module PEADMEPSS 0.2%CVE-2026-42225HIGHGnuTLS backend silently skips certificate chain verification when verify_peer is falseEPSS 0.2%CVE-2025-11695HIGHConfiguration may unexpectedly disable certificate validationEPSS 0.2%CVE-2025-14022HIGHLINE client for iOS prior to 15.4 allows man-in-the-middle attacks due to improper SSL/TLS certificate validation in an integrated financialEPSS 0.2%CVE-2026-0233LOWAutonomous Digital Experience Manager: Improper validation of ADEM certificateEPSS 0.2%CVE-2025-23118MEDIUMAn Improper Certificate Validation vulnerability could allow an authenticated malicious actor with access to UniFi Protect Cameras adjacent EPSS 0.2%CVE-2025-46551MEDIUMJRuby-OpenSSL has hostname verification disabled by defaultEPSS 0.2%CVE-2022-23649LOWImproper Certificate Validation in CosignEPSS 0.2%CVE-2026-40944MEDIUMOxia: TLS CA certificate chain validation fails with multi-certificate PEM bundlesEPSS 0.2%CVE-2026-41872CRITICAL"Kura Sushi Official App" provided by EPG, Inc. is vulnerable to improper certificate validation. A man-in-the-middle attack may allow eavesEPSS 0.2%CVE-2017-8445—An error was found in the X-Pack Security TLS trust manager for versions 5.0.0 to 5.5.1. If reloading the trust material fails the trust manEPSS 0.2%CVE-2024-45641MEDIUMIBM Security ReaQta improper certificate validationEPSS 0.2%CVE-2025-59347LOWDragonfly Manager makes requests to external endpoints with disabled TLS authenticationEPSS 0.2%CVE-2023-48785MEDIUMAn improper certificate validation vulnerability [CWE-295] in FortiNAC-F version 7.2.4 and below may allow a remote and unauthenticated attaEPSS 0.2%CVE-2025-35983MEDIUMImproper Certificate Validation (CWE-295) in the Controller 7000 OneLink implementation could allow an unprivileged attacker to perform a liEPSS 0.2%CVE-2026-32884MEDIUMBotan: Case-Insensitive CN Values Bypass DNS excludedSubtrees Name Constraints (RFC 5280 Violation)EPSS 0.2%