Vulnerabilities > Improper Certificate Validation
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-08-13 | CVE-2019-14516 | Improper Certificate Validation vulnerability in Uidai Maadhaar 1.2.7 The mAadhaar application 1.2.7 for Android lacks SSL Certificate Validation, leading to man-in-the-middle attacks against requests for FAQs or Help. | 5.8 |
2019-08-07 | CVE-2019-10382 | Improper Certificate Validation vulnerability in Jenkins VMWare LAB Manager Slaves Jenkins VMware Lab Manager Slaves Plugin 0.2.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM. | 6.5 |
2019-08-07 | CVE-2019-10381 | Improper Certificate Validation vulnerability in Jenkins Codefresh Integration Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM. | 7.5 |
2019-08-05 | CVE-2017-18479 | Improper Certificate Validation vulnerability in Cpanel In cPanel before 62.0.4, WHM SSL certificate generation uses an unreserved e-mail address (SEC-209). | 4.0 |
2019-08-01 | CVE-2019-3890 | Improper Certificate Validation vulnerability in multiple products It was discovered evolution-ews before 3.31.3 does not check the validity of SSL certificates. | 5.8 |
2019-08-01 | CVE-2019-14334 | Improper Certificate Validation vulnerability in Dlink products An issue was discovered on D-Link 6600-AP, DWL-3600AP, and DWL-8610AP Ax 4.2.0.14 21/03/2019 devices. | 2.1 |
2019-07-30 | CVE-2019-7615 | Improper Certificate Validation vulnerability in Elastic Apm-Agent-Ruby A TLS certificate validation flaw was found in Elastic APM agent for Ruby versions before 2.9.0. | 7.4 |
2019-07-30 | CVE-2019-1552 | Improper Certificate Validation vulnerability in Openssl OpenSSL has internal defaults for a directory tree where it can find a configuration file as well as certificates used for verification in TLS. | 3.3 |
2019-07-23 | CVE-2019-11727 | Improper Certificate Validation vulnerability in Mozilla Firefox A vulnerability exists where it possible to force Network Security Services (NSS) to sign CertificateVerify with PKCS#1 v1.5 signatures when those are the only ones advertised by server in CertificateRequest in TLS 1.3. | 5.0 |
2019-07-23 | CVE-2019-1010206 | Improper Certificate Validation vulnerability in Http Request Project Http Request 6.0 OSS Http Request (Apache Cordova Plugin) 6 is affected by: Missing SSL certificate validation. | 4.3 |