Vulnerabilities > Improper Certificate Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-27 | CVE-2011-2207 | Improper Certificate Validation vulnerability in multiple products dirmngr before 2.1.0 improperly handles certain system calls, which allows remote attackers to cause a denial of service (DOS) via a specially-crafted certificate. | 5.3 |
| 2019-11-26 | CVE-2019-19271 | Improper Certificate Validation vulnerability in Proftpd An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. | 7.5 |
| 2019-11-26 | CVE-2019-19270 | Improper Certificate Validation vulnerability in multiple products An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. | 7.5 |
| 2019-11-25 | CVE-2012-5518 | Improper Certificate Validation vulnerability in Ovirt Vdsm vdsm: certificate generation upon node creation allowing vdsm to start and serve requests from anyone who has a matching key (and certificate) | 7.5 |
| 2019-11-21 | CVE-2014-2902 | Improper Certificate Validation vulnerability in Wolfssl wolfssl before 3.2.0 does not properly authorize CA certificate for signing other certificates. | 7.5 |
| 2019-11-21 | CVE-2014-2901 | Improper Certificate Validation vulnerability in Wolfssl wolfssl before 3.2.0 does not properly issue certificates for a server's hostname. | 7.5 |
| 2019-11-19 | CVE-2012-6071 | Improper Certificate Validation vulnerability in multiple products nuSOAP before 0.7.3-5 does not properly check the hostname of a cert. | 7.5 |
| 2019-11-13 | CVE-2010-4533 | Improper Certificate Validation vulnerability in multiple products offlineimap before 6.3.4 added support for SSL server certificate validation but it is still possible to use SSL v2 protocol, which is a flawed protocol with multiple security deficiencies. | 9.8 |
| 2019-11-13 | CVE-2010-4532 | Improper Certificate Validation vulnerability in multiple products offlineimap before 6.3.2 does not check for SSL server certificate validation when "ssl = yes" option is specified which can allow man-in-the-middle attacks. | 5.9 |
| 2019-11-13 | CVE-2014-8167 | Improper Certificate Validation vulnerability in Redhat products vdsm and vdsclient does not validate certficate hostname from another vdsm which could facilitate a man-in-the-middle attack | 5.9 |