Vulnerabilities > Improper Certificate Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-26 | CVE-2020-24661 | Improper Certificate Validation vulnerability in multiple products GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates (e.g., self-signed certificates) when the client system is not configured to use a system-provided PKCS#11 store. | 5.9 |
| 2020-08-26 | CVE-2020-5913 | Improper Certificate Validation vulnerability in F5 products In versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.2, the BIG-IP Client or Server SSL profile ignores revoked certificates, even when a valid CRL is present. | 7.4 |
| 2020-08-26 | CVE-2019-18847 | Improper Certificate Validation vulnerability in Akamai Enterprise Application Access Enterprise Access Client Auto-Updater allows for Remote Code Execution prior to version 2.0.1. | 9.8 |
| 2020-08-26 | CVE-2020-15498 | Improper Certificate Validation vulnerability in Asus Rt-Ac1900P Firmware 3.0.0.4.385.10000/3.0.0.4.385.20252 An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. | 5.9 |
| 2020-08-25 | CVE-2020-16197 | Improper Certificate Validation vulnerability in Octopus Server and Server An issue was discovered in Octopus Deploy 3.4. | 4.3 |
| 2020-08-24 | CVE-2020-24613 | Improper Certificate Validation vulnerability in Wolfssl wolfSSL before 4.5.0 mishandles TLS 1.3 server data in the WAIT_CERT_CR state, within SanityCheckTls13MsgReceived() in tls13.c. | 6.8 |
| 2020-08-05 | CVE-2020-17366 | Improper Certificate Validation vulnerability in Nlnetlabs Routinator An issue was discovered in NLnet Labs Routinator 0.1.0 through 0.7.1. | 7.4 |
| 2020-07-31 | CVE-2020-15134 | Improper Certificate Validation vulnerability in Faye Project Faye Faye before version 1.4.0, there is a lack of certification validation in TLS handshakes. | 8.7 |
| 2020-07-31 | CVE-2020-15133 | Improper Certificate Validation vulnerability in Faye-Websocket Project Faye-Websocket In faye-websocket before version 0.11.0, there is a lack of certification validation in TLS handshakes. | 8.7 |
| 2020-07-30 | CVE-2020-16164 | Improper Certificate Validation vulnerability in Ripe Rpki Validator 3 An issue was discovered in RIPE NCC RPKI Validator 3.x through 3.1-2020.07.06.14.28. | 7.4 |