Vulnerabilities > Improper Certificate Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-15 | CVE-2022-42131 | Improper Certificate Validation vulnerability in Liferay Digital Experience Platform and Liferay Portal Certain Liferay products are affected by: Missing SSL Certificate Validation in the Dynamic Data Mapping module's REST data providers. | 4.8 |
| 2022-11-04 | CVE-2022-20960 | Improper Certificate Validation vulnerability in Cisco Email Security Appliance A vulnerability in Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of certain TLS connections that are processed by an affected device. | 7.5 |
| 2022-11-04 | CVE-2022-33684 | Improper Certificate Validation vulnerability in Apache Pulsar The Apache Pulsar C++ Client does not verify peer TLS certificates when making HTTPS calls for the OAuth2.0 Client Credential Flow, even when tlsAllowInsecureConnection is disabled via configuration. | 8.1 |
| 2022-11-01 | CVE-2022-42813 | Improper Certificate Validation vulnerability in Apple products A certificate validation issue existed in the handling of WKWebView. | 9.8 |
| 2022-10-12 | CVE-2022-41316 | Improper Certificate Validation vulnerability in Hashicorp Vault HashiCorp Vault and Vault Enterprise’s TLS certificate auth method did not initially load the optionally configured CRL issued by the role's CA into memory on startup, resulting in the revocation list not being checked if the CRL has not yet been retrieved. | 5.3 |
| 2022-10-11 | CVE-2022-40147 | Improper Certificate Validation vulnerability in Siemens Industrial Edge Management A vulnerability has been identified in Industrial Edge Management (All versions < V1.5.1). | 7.4 |
| 2022-10-10 | CVE-2022-41747 | Improper Certificate Validation vulnerability in Trendmicro Apex ONE 2019 An improper certification validation vulnerability in Trend Micro Apex One agents could allow a local attacker to load a DLL file with system service privileges on affected installations. | 7.8 |
| 2022-09-28 | CVE-2022-34394 | Improper Certificate Validation vulnerability in Dell Smartfabric Os10 10.5.3.4 Dell OS10, version 10.5.3.4, contains an Improper Certificate Validation vulnerability in Support Assist. | 3.7 |
| 2022-09-23 | CVE-2021-45035 | Improper Certificate Validation vulnerability in Velneo Vclient 28.1.3 Velneo vClient on its 28.1.3 version, does not correctly check the certificate of authenticity by default. | 5.9 |
| 2022-09-23 | CVE-2022-33681 | Improper Certificate Validation vulnerability in Apache Pulsar Delayed TLS hostname verification in the Pulsar Java Client and the Pulsar Proxy make each client vulnerable to a man in the middle attack. | 5.9 |