Vulnerabilities > Improper Certificate Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-07 | CVE-2017-7932 | Improper Certificate Validation vulnerability in NXP products An improper certificate validation issue was discovered in NXP i.MX 28 i.MX 50, i.MX 53, i.MX 7Solo i.MX 7Dual Vybrid VF3xx, Vybrid VF5xx, Vybrid VF6xx, i.MX 6ULL, i.MX 6UltraLite, i.MX 6SoloLite, i.MX 6Solo, i.MX 6DualLite, i.MX 6SoloX, i.MX 6Dual, i.MX 6Quad, i.MX 6DualPlus, and i.MX 6QuadPlus. | 6.0 |
| 2017-08-07 | CVE-2017-6664 | Improper Certificate Validation vulnerability in Cisco IOS XE A vulnerability in the Autonomic Networking feature of Cisco IOS XE Software could allow an unauthenticated, remote, autonomic node to access the Autonomic Networking infrastructure of an affected system, after the certificate for the autonomic node has been revoked. | 7.5 |
| 2017-08-04 | CVE-2017-10819 | Improper Certificate Validation vulnerability in Intercom Malion 5.2.1 MaLion for Mac 4.3.0 to 5.2.1 does not properly validate certificates, which may allow an attacker to eavesdrop on an encrypted communication. | 5.9 |
| 2017-08-02 | CVE-2017-2278 | Improper Certificate Validation vulnerability in IID RBB Speed Test The RBB SPEED TEST App for Android version 2.0.3 and earlier, RBB SPEED TEST App for iOS version 2.1.0 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | 5.9 |
| 2017-08-02 | CVE-2017-11364 | Improper Certificate Validation vulnerability in Joomla Joomla! The CMS installer in Joomla! before 3.7.4 does not verify a user's ownership of a webspace, which allows remote authenticated users to gain control of the target application by leveraging Certificate Transparency logs. | 8.8 |
| 2017-08-01 | CVE-2017-11132 | Improper Certificate Validation vulnerability in Heinekingmedia Stashcat An issue was discovered in heinekingmedia StashCat before 1.5.18 for Android. | 7.5 |
| 2017-07-25 | CVE-2015-0904 | Improper Certificate Validation vulnerability in Shidax Restaurant Karaoke 1.3.3 The Restaurant Karaoke SHIDAX app 1.3.3 and earlier on Android does not verify SSL certificates, which allows remote attackers to obtain sensitive information via a man-in-the-middle attack. | 5.9 |
| 2017-07-21 | CVE-2015-3886 | Improper Certificate Validation vulnerability in Libinfinity Project Libinfinity libinfinity before 0.6.6-1 does not validate expired SSL certificates, which allows remote attackers to have unspecified impact via unknown vectors. | 9.8 |
| 2017-07-20 | CVE-2017-11501 | Improper Certificate Validation vulnerability in Nixos Project Nixos NixOS 17.03 and earlier has an unintended default absence of SSL Certificate Validation for LDAP. | 5.9 |
| 2017-07-17 | CVE-2017-1000007 | Improper Certificate Validation vulnerability in Twistedmatrix Txaws txAWS (all current versions) fail to perform complete certificate verification resulting in vulnerability to MitM attacks and information disclosure. | 5.9 |