Falhas do tipo CWE-295
685 resultadosCVE-2021-3460HIGHThe Motorola MH702x devices, prior to version 2.0.0.301, do not properly verify the server certificate during communication with the supportEPSS 0.6%CVE-2022-33681MEDIUMImproper Hostname Verification in Java Client and Proxy can expose authentication data via MITMEPSS 0.6%CVE-2026-8992HIGHAn improper certificate validation vulnerability in Ivanti Secure Access Client before 22.8R6 allows a remote unauthenticated attacker to exEPSS 0.6%CVE-2023-43017HIGHIBM Security Verify Access man in the middleEPSS 0.6%CVE-2023-51634HIGHNETGEAR RAX30 Improper Certificate Validation Remote Code Execution VulnerabilityEPSS 0.6%CVE-2022-33683MEDIUMDisabled Certificate Validation makes Broker, Proxy Admin Clients vulnerable to MITM attack EPSS 0.6%CVE-2022-22156MEDIUMJunos OS: Certificate validation is skipped when fetching system scripts from a HTTPS URLEPSS 0.5%CVE-2024-21543MEDIUMVersions of the package djoser before 2.3.0 are vulnerable to Authentication Bypass when the authenticate() function fails. This is because EPSS 0.5%CVE-2023-47700MEDIUMIBM Storage Virtualize improper certificate validationEPSS 0.5%CVE-2024-25642HIGHImproper Certificate Validation in SAP Cloud ConnectorEPSS 0.5%CVE-2024-7570HIGHImproper certificate validation in Ivanti ITSM on-prem and Neurons for ITSM Versions 2023.4 and earlier allows a remote attacker in a MITM pEPSS 0.5%CVE-2020-15732MEDIUMImproper Certificate Validation vulnerability in the Online Threat Prevention module as used in Bitdefender Total Security allows an attackeEPSS 0.5%CVE-2022-24320—A CWE-295: Improper Certificate Validation vulnerability exists that could allow a Man-in-theMiddle attack when communications between the cEPSS 0.5%CVE-2019-3841HIGHKubevirt/virt-cdi-importer, versions 1.4.0 to 1.5.3 inclusive, were reported to disable TLS certificate validation when importing data into EPSS 0.5%CVE-2023-0509HIGHImproper Certificate Validation in pyload/pyloadEPSS 0.5%CVE-2022-41244HIGHJenkins View26 Test-Reporting Plugin 1.0.7 and earlier does not perform hostname validation when connecting to the configured View26 server EPSS 0.5%CVE-2022-41243HIGHJenkins SmallTest Plugin 1.0.4 and earlier does not perform hostname validation when connecting to the configured View26 server that could bEPSS 0.5%CVE-2026-20184CRITICALCisco Webex Meetings Certificate Validation VulnerabilityEPSS 0.5%CVE-2024-3738HIGHcym1102 nginxWebUI saveCmd handlePath certificate validationEPSS 0.5%CVE-2023-22367MEDIUMIchiran App for iOS versions prior to 3.1.0 and Ichiran App for Android versions prior to 3.1.0 improperly verify server certificates, whichEPSS 0.5%