Weaknesses of type CWE-296
17 resultsCVE-2021-44532—Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 converts SANs (Subject Alternative Names) to a string format. It uses this string to cEPSS 10.4%CVE-2019-3890HIGHIt was discovered evolution-ews before 3.31.3 does not check the validity of SSL certificates. An attacker could abuse this flaw to get confEPSS 1.0%CVE-2021-1566HIGHCisco Email Security Appliance and Cisco Web Security Appliance Certificate Validation VulnerabilityEPSS 0.7%CVE-2019-3762HIGHData Protection Central versions 1.0, 1.0.1, 18.1, 18.2, and 19.1 contains an Improper Certificate Chain of Trust Vulnerability. A remote unEPSS 0.6%CVE-2021-23155CRITICALImproper validation of the cloud certificate chain in Mobile Client allows man-in-the-middle attack to impersonate the legitimate Command CeEPSS 0.5%CVE-2026-44852HIGHAuthenticated Remote Code Execution via Arbitrary File Overwrite in the AOS-8 and AOS-10 Web-Based Management InterfaceEPSS 0.4%CVE-2025-48057CRITICALIcinga 2 certificate renewal might incorrectly renew an invalid certificateEPSS 0.4%CVE-2021-23162HIGHImproper validation of the cloud certificate chain in Mobile Connect allows man-in-the-middle attack to impersonate the legitimate Command CEPSS 0.4%CVE-2025-22459MEDIUMImproper certificate validation in Ivanti Endpoint Manager before version 2024 SU1 or before version 2022 SU7 allows a remote unauthenticateEPSS 0.3%CVE-2026-27134HIGHStrimzi: All CAs from a custom CA chain consisting of multiple CAs are trusted for mTLS user autenticationEPSS 0.3%CVE-2025-1146HIGHCrowdStrike Falcon Sensor for Linux TLS IssueEPSS 0.3%CVE-2026-42789HIGHNon-CA certificate accepted as intermediate issuer in public_key path validationEPSS 0.2%CVE-2024-43196MEDIUMIBM OpenPages data manipulationEPSS 0.2%CVE-2026-27133MEDIUMStrimzi All CAs from CA chain will be trusted in Kafka Connect and Kafka MirrorMaker 2 target clustersEPSS 0.2%CVE-2025-10539MEDIUMImproper TLS Certificate Validation RCE via Malicious Update in DeskTime Time Tracking AppEPSS 0.2%CVE-2026-24066HIGHSlate Digital Connect macOS XPC certificate validation privilege escalationEPSS 0.1%CVE-2026-33779HIGHJunos OS: SRX Series: Insufficient certificate verification for device to SD cloud communicationEPSS 0.1%