Vulnerabilities > Improper Certificate Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-07 | CVE-2019-10381 | Improper Certificate Validation vulnerability in Jenkins Codefresh Integration Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and hostname verification globally for the Jenkins master JVM. | 7.5 |
| 2019-08-05 | CVE-2017-18479 | Improper Certificate Validation vulnerability in Cpanel In cPanel before 62.0.4, WHM SSL certificate generation uses an unreserved e-mail address (SEC-209). | 6.5 |
| 2019-08-01 | CVE-2019-3890 | Improper Certificate Validation vulnerability in multiple products It was discovered evolution-ews before 3.31.3 does not check the validity of SSL certificates. | 8.1 |
| 2019-08-01 | CVE-2019-14334 | Improper Certificate Validation vulnerability in Dlink products An issue was discovered on D-Link 6600-AP, DWL-3600AP, and DWL-8610AP Ax 4.2.0.14 21/03/2019 devices. | 5.5 |
| 2019-07-30 | CVE-2019-7615 | Improper Certificate Validation vulnerability in Elastic Apm-Agent-Ruby A TLS certificate validation flaw was found in Elastic APM agent for Ruby versions before 2.9.0. | 7.4 |
| 2019-07-30 | CVE-2019-1552 | Improper Certificate Validation vulnerability in Openssl OpenSSL has internal defaults for a directory tree where it can find a configuration file as well as certificates used for verification in TLS. | 3.3 |
| 2019-07-23 | CVE-2019-11727 | Improper Certificate Validation vulnerability in Mozilla Firefox A vulnerability exists where it possible to force Network Security Services (NSS) to sign CertificateVerify with PKCS#1 v1.5 signatures when those are the only ones advertised by server in CertificateRequest in TLS 1.3. | 5.3 |
| 2019-07-23 | CVE-2019-1010206 | Improper Certificate Validation vulnerability in Http Request Project Http Request 6.0 OSS Http Request (Apache Cordova Plugin) 6 is affected by: Missing SSL certificate validation. | 5.9 |
| 2019-07-17 | CVE-2019-1940 | Improper Certificate Validation vulnerability in Cisco Industrial Network Director A vulnerability in the Web Services Management Agent (WSMA) feature of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data using an invalid X.509 certificate. | 5.9 |
| 2019-07-17 | CVE-2019-1010275 | Improper Certificate Validation vulnerability in Helm helm Before 2.7.2 is affected by: CWE-295: Improper Certificate Validation. | 9.8 |