Weaknesses of type CWE-347
471 resultsCVE-2025-54369CRITICALNode-SAML SAML Authentication BypassEPSS 0.4%CVE-2023-49646MEDIUMImproper authentication in some Zoom clients before version 5.16.5 may allow an authenticated user to conduct a denial of service via networEPSS 0.4%CVE-2022-47549MEDIUMAn unprotected memory-access operation in optee_os in TrustedFirmware Open Portable Trusted Execution Environment (OP-TEE) before 3.20 allowEPSS 0.4%CVE-2023-49079CRITICALMisskey's missing signature validation allows arbitrary users to impersonate any remote user.EPSS 0.4%CVE-2021-1461MEDIUMCisco SD-WAN Software Signature Verification Bypass VulnerabilityEPSS 0.4%CVE-2025-59334CRITICALLinkr allows manifest tampering leading to arbitrary file injectionEPSS 0.4%CVE-2023-40178MEDIUM@node-saml/node-saml's validatePostRequestAsync does not include checkTimestampsValidityErrorEPSS 0.4%CVE-2023-3347MEDIUMSamba: smb2 packet signing is not enforced when "server signing = required" is setEPSS 0.4%CVE-2023-34205CRITICALIn Moov signedxml through 1.0.0, parsing the raw XML (as received) can result in different output than parsing the canonicalized XML. Thus, EPSS 0.4%CVE-2024-47832CRITICALXML Signature Bypass via differential XML parsing in ssoreadyEPSS 0.4%CVE-2025-27670CRITICALVasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Insufficient Signature Validation OEPSS 0.4%CVE-2021-31847HIGHImproper privilege management in repair process of MA for WindowsEPSS 0.4%CVE-2023-44077CRITICALStudio Network Solutions ShareBrowser before 7.0 on macOS mishandles signature verification, aka PMP-2636.EPSS 0.4%CVE-2023-2030LOWImproper Verification of Cryptographic Signature in GitLabEPSS 0.4%CVE-2024-54150HIGHAlgorithm Confusion Vulnerability in cjwtEPSS 0.4%CVE-2025-66567CRITICALruby-saml has a SAML authentication bypass due to namespace handling (parser differential)EPSS 0.4%CVE-2025-64787LOWAcrobat Reader | Improper Verification of Cryptographic Signature (CWE-347)EPSS 0.4%CVE-2026-9779HIGHATEN Unizon doCryptoHugeFileToFile Improper Verification of Cryptographic Signature Remote Code Execution VulnerabilityEPSS 0.4%CVE-2025-64786LOWAcrobat Reader | Improper Verification of Cryptographic Signature (CWE-347)EPSS 0.4%CVE-2023-47122MEDIUMGitsign's Rekor public keys fetched from upstream API instead of local TUF client.EPSS 0.4%