Vulnerabilities > Improper Certificate Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-19 | CVE-2023-1514 | Improper Certificate Validation vulnerability in Hitachienergy Rtu500 Scripting Interface 1.0.1.30/1.0.2/1.1.1 A vulnerability exists in the component RTU500 Scripting interface. | 7.5 |
| 2023-12-15 | CVE-2023-6680 | Improper Certificate Validation vulnerability in Gitlab An improper certificate validation issue in Smartcard authentication in GitLab EE affecting all versions from 11.6 prior to 16.4.4, 16.5 prior to 16.5.4, and 16.6 prior to 16.6.2 allows an attacker to authenticate as another user given their public key if they use Smartcard authentication. | 8.1 |
| 2023-12-12 | CVE-2009-4123 | Improper Certificate Validation vulnerability in Jruby Jruby-Openssl The jruby-openssl gem before 0.6 for JRuby mishandles SSL certificate validation. | 7.5 |
| 2023-12-12 | CVE-2023-48427 | Improper Certificate Validation vulnerability in Siemens Sinec INS 1.0 A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). | 9.8 |
| 2023-12-10 | CVE-2023-50454 | Improper Certificate Validation vulnerability in Zammad 6.1.0/6.2.0 An issue was discovered in Zammad before 6.2.0. | 5.9 |
| 2023-12-06 | CVE-2023-49247 | Improper Certificate Validation vulnerability in Huawei Emui and Harmonyos Permission verification vulnerability in distributed scenarios. | 7.5 |
| 2023-11-30 | CVE-2023-5909 | Improper Certificate Validation vulnerability in multiple products KEPServerEX does not properly validate certificates from clients which may allow unauthenticated users to connect. | 7.5 |
| 2023-11-26 | CVE-2023-49312 | Improper Certificate Validation vulnerability in Precisionbridge Precision Bridge Precision Bridge PrecisionBridge.exe (aka the thick client) before 7.3.21 allows an integrity violation in which the same license key is used on multiple systems, via vectors involving a Process Hacker memory dump, error message inspection, and modification of a MAC address. | 9.1 |
| 2023-11-22 | CVE-2023-43082 | Improper Certificate Validation vulnerability in Dell products Dell Unity prior to 5.3 contains a 'man in the middle' vulnerability in the vmadapter component. | 5.9 |
| 2023-11-16 | CVE-2023-48052 | Improper Certificate Validation vulnerability in Httpie 3.2.2 Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack. | 7.4 |