Falhas do tipo CWE-295
695 resultadosCVE-2023-29175MEDIUMAn improper certificate validation vulnerability [CWE-295] in FortiOS 6.2 all versions, 6.4 all versions, 7.0.0 through 7.0.10, 7.2.0 and FoEPSS 0.2%CVE-2026-45389HIGHIn OCaml-TLS before 2.1.0, the server implementation does insufficient checks of the certificate provided by the client (when doing client aEPSS 0.2%CVE-2024-33509MEDIUMAn improper certificate validation vulnerability [CWE-295] in FortiWeb 7.2.0 through 7.2.1, 7.0 all versions, 6.4 all versions and 6.3 all vEPSS 0.2%CVE-2025-35434LOWCISA Thorium does not validate TLS connections to ElasticsearchEPSS 0.2%CVE-2026-34580CRITICALBotan has a certificate authentication bypass due to trust anchor confusionEPSS 0.2%CVE-2026-0228LOWPAN-OS: Improper Validation of Terminal Server Agent CertificateEPSS 0.2%CVE-2025-48393MEDIUMThe server identity check mechanism for firmware upgrade performed via command shell is insecurely implemented potentially allowing an attacEPSS 0.2%CVE-2026-33753MEDIUMImproper Certificate Validation in rfc3161-clientEPSS 0.2%CVE-2024-38861MEDIUMLack of TLS validation in plugin MikroTik on Checkmk ExchangeEPSS 0.2%CVE-2025-42611MEDIUMImproper certificate validation in multiple RouterOS servicesEPSS 0.2%CVE-2025-62375MEDIUMgo-witness Improper Verification of AWS EC2 Identity DocumentsEPSS 0.2%CVE-2026-33896HIGHForge has a basicConstraints bypass in its certificate chain verification (RFC 5280 violation)EPSS 0.2%CVE-2025-23091MEDIUMAn Improper Certificate Validation on UniFi OS devices, with Identity Enterprise configured, could allow a malicious actor to execute a man-EPSS 0.2%CVE-2026-49267MEDIUMApache Airflow: No certificate validation on SMTP STARTTLS connectionsEPSS 0.2%CVE-2025-40800CRITICALA vulnerability has been identified in COMOS V10.6 (All versions < V10.6.1), COMOS V10.6 (All versions < V10.6.1), NX V2412 (All versions < EPSS 0.2%CVE-2025-68482MEDIUMA improper certificate validation vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnalyzer 7.4.0 through 7.4.8, FortiAnalyEPSS 0.2%CVE-2026-5501HIGHImproper Certificate Signature Verification in X.509 Chain Validation Allows Forged Leaf CertificatesEPSS 0.2%CVE-2026-27133MEDIUMStrimzi All CAs from CA chain will be trusted in Kafka Connect and Kafka MirrorMaker 2 target clustersEPSS 0.2%CVE-2025-70043CRITICALAn issue pertaining to CWE-295: Improper Certificate Validation was discovered in Ayms node-To master. The application disables TLS/SSL certEPSS 0.2%CVE-2026-0872LOWImproper Certificate Validation vulnerability in Thales SafeNet Agent for Windows LogonEPSS 0.2%