Vulnerabilities > Improper Certificate Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-19 | CVE-2021-20989 | Improper Certificate Validation vulnerability in Fibaro Home Center 2 Firmware and Home Center Lite Firmware Fibaro Home Center 2 and Lite devices with firmware version 4.600 and older initiate SSH connections to the Fibaro cloud to provide remote access and remote support capabilities. | 5.9 |
| 2021-04-13 | CVE-2021-3460 | Improper Certificate Validation vulnerability in Motorola Mh702X Firmware The Motorola MH702x devices, prior to version 2.0.0.301, do not properly verify the server certificate during communication with the support server which could lead to the communication channel being accessible by an attacker. | 9.8 |
| 2021-04-12 | CVE-2020-7924 | Improper Certificate Validation vulnerability in Mongodb Database Tools and Mongomirror Usage of specific command line parameter in MongoDB Tools which was originally intended to just skip hostname checks, may result in MongoDB skipping all certificate validation. | 6.5 |
| 2021-04-08 | CVE-2021-22511 | Improper Certificate Validation vulnerability in Microfocus Application Automation Tools Improper Certificate Validation vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. | 6.5 |
| 2021-04-06 | CVE-2021-27899 | Improper Certificate Validation vulnerability in Proofpoint Insider Threat Management The Proofpoint Insider Threat Management Agents (formerly ObserveIT Agent) for MacOS and Linux perform improper validation of the ITM Server's certificate, which enables a remote attacker to intercept and alter these communications using a man-in-the-middle attack. | 7.4 |
| 2021-03-26 | CVE-2021-21374 | Improper Certificate Validation vulnerability in Nim-Lang NIM Nimble is a package manager for the Nim programming language. | 8.1 |
| 2021-03-26 | CVE-2021-21373 | Improper Certificate Validation vulnerability in Nim-Lang NIM Nimble is a package manager for the Nim programming language. | 5.9 |
| 2021-03-25 | CVE-2021-3450 | Improper Certificate Validation vulnerability in multiple products The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. | 7.4 |
| 2021-03-24 | CVE-2021-1471 | Improper Certificate Validation vulnerability in Cisco Jabber Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. | 5.6 |
| 2021-03-15 | CVE-2021-28363 | Improper Certificate Validation vulnerability in multiple products The urllib3 library 1.26.x before 1.26.4 for Python omits SSL certificate validation in some cases involving HTTPS to HTTPS proxies. | 6.5 |