Vulnerabilities > Improper Certificate Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-17 | CVE-2018-10377 | Improper Certificate Validation vulnerability in Portswigger Burp Suite PortSwigger Burp Suite before 1.7.34 has Improper Certificate Validation of the Collaborator server certificate, which might allow man-in-the-middle attackers to obtain interaction data. | 5.9 |
| 2018-06-13 | CVE-2018-10408 | Improper Certificate Validation vulnerability in Virustotal An issue was discovered in VirusTotal. | 7.8 |
| 2018-06-13 | CVE-2018-10406 | Improper Certificate Validation vulnerability in Yelp Osxcollector 1.8 An issue was discovered in Yelp OSXCollector. | 7.8 |
| 2018-06-13 | CVE-2018-10405 | Improper Certificate Validation vulnerability in Google Santa An issue was discovered in Google Santa and molcodesignchecker. | 7.8 |
| 2018-06-13 | CVE-2018-10404 | Improper Certificate Validation vulnerability in Objective-See products An issue was discovered in Objective-See KnockKnock, LuLu, TaskExplorer, WhatsYourSign, and procInfo. | 7.8 |
| 2018-06-13 | CVE-2018-10403 | Improper Certificate Validation vulnerability in F-Secure Xfence An issue was discovered in F-Secure XFENCE and Little Flocker. | 7.8 |
| 2018-06-12 | CVE-2018-12257 | Improper Certificate Validation vulnerability in Apollotechnologiesinc Momentum Axel 720P Firmware 5.1.8 An issue was discovered on Momentum Axel 720P 5.1.8 devices. | 4.4 |
| 2018-06-11 | CVE-2016-9064 | Improper Certificate Validation vulnerability in Mozilla Firefox Add-on updates failed to verify that the add-on ID inside the signed package matched the ID of the add-on being updated. | 5.9 |
| 2018-06-07 | CVE-2018-0334 | Improper Certificate Validation vulnerability in Cisco Anyconnect Secure Mobility Client 4.6(100) A vulnerability in the certificate management subsystem of Cisco AnyConnect Network Access Manager and of Cisco AnyConnect Secure Mobility Client for iOS, Mac OS X, Android, Windows, and Linux could allow an unauthenticated, remote attacker to bypass the TLS certificate check when downloading certain configuration files. | 4.8 |
| 2018-06-04 | CVE-2018-11712 | Improper Certificate Validation vulnerability in Webkitgtk Webkitgtk+ 2.20.0/2.20.1 WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in the libsoup network backend of WebKit, as used in WebKitGTK+ versions 2.20.0 and 2.20.1, failed to perform TLS certificate verification for WebSocket connections. | 7.5 |