Vulnerabilities > Improper Certificate Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-13 | CVE-2023-22367 | Improper Certificate Validation vulnerability in Ichiranusa Ichiran Ichiran App for iOS versions prior to 3.1.0 and Ichiran App for Android versions prior to 3.1.0 improperly verify server certificates, which may allow a remote unauthenticated attacker to eavesdrop on an encrypted communication via a man-in-the-middle attack. | 5.9 |
| 2023-02-11 | CVE-2022-34404 | Improper Certificate Validation vulnerability in Dell System Update 1.9/1.9.1 Dell System Update, version 2.0.0 and earlier, contains an Improper Certificate Validation in data parser module. | 6.0 |
| 2023-02-06 | CVE-2022-46496 | Improper Certificate Validation vulnerability in Bticino Door Entry for Hometouch BTicino Door Entry HOMETOUCH for iOS 1.4.2 was discovered to be missing an SSL certificate. | 5.9 |
| 2023-02-03 | CVE-2022-31733 | Improper Certificate Validation vulnerability in Cloudfoundry Cf-Deployment and Diego Starting with diego-release 2.55.0 and up to 2.69.0, and starting with CF Deployment 17.1 and up to 23.2.0, apps are accessible via another port on diego cells, allowing application ingress without a client certificate. | 9.1 |
| 2023-02-01 | CVE-2022-3913 | Improper Certificate Validation vulnerability in Rapid7 Nexpose Rapid7 Nexpose and InsightVM versions 6.6.82 through 6.6.177 fail to validate the certificate of the update server when downloading updates. | 5.3 |
| 2023-02-01 | CVE-2022-45100 | Improper Certificate Validation vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.3.x, contains an Improper Certificate Validation vulnerability. | 9.8 |
| 2023-01-27 | CVE-2020-36658 | Improper Certificate Validation vulnerability in multiple products In Apache::Session::LDAP before 0.5, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. | 8.1 |
| 2023-01-27 | CVE-2020-36659 | Improper Certificate Validation vulnerability in multiple products In Apache::Session::Browseable before 1.3.6, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. | 8.1 |
| 2023-01-19 | CVE-2023-23690 | Improper Certificate Validation vulnerability in Dell Cloud Mobility for Dell EMC Storage 1.3.0/1.3.1 Cloud Mobility for Dell EMC Storage, versions 1.3.0.X and below contains an Improper Check for Certificate Revocation vulnerability. | 7.0 |
| 2023-01-06 | CVE-2022-42979 | Improper Certificate Validation vulnerability in Rydesharing Ryde 5.8.43 Information disclosure due to an insecure hostname validation in the RYDE application 5.8.43 for Android and iOS allows attackers to take over an account via a deep link. | 8.8 |