Vulnerabilities > Improper Certificate Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-06-09 | CVE-2016-7816 | Improper Certificate Validation vulnerability in Cybozu Kintone The Cybozu kintone mobile for Android 1.0.6 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | 5.9 |
| 2017-06-09 | CVE-2016-7805 | Improper Certificate Validation vulnerability in Unisys Mobigate 2.2.1.2/2.2.4.1 The mobiGate App for Android version 2.2.1.2 and earlier and mobiGate App for iOS version 2.2.4.1 and earlier do not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | 5.9 |
| 2017-06-08 | CVE-2016-5648 | Improper Certificate Validation vulnerability in Acer Portal 3.9.3.2006 Acer Portal app before 3.9.4.2000 for Android does not properly validate SSL certificates, which allows remote attackers to perform a Man-in-the-middle attack via a crafted SSL certificate. | 5.3 |
| 2017-06-04 | CVE-2016-8231 | Improper Certificate Validation vulnerability in Lenovo Service Bridge In Lenovo Service Bridge before version 4, a bug found in the signature verification logic of the code signing certificate could be exploited by an attacker to insert a forged code signing certificate. | 7.5 |
| 2017-05-30 | CVE-2016-3083 | Improper Certificate Validation vulnerability in Apache Hive Apache Hive (JDBC + HiveServer2) implements SSL for plain TCP and HTTP connections (it supports both transport modes). | 7.5 |
| 2017-05-24 | CVE-2017-2800 | Improper Certificate Validation vulnerability in Wolfssl A specially crafted x509 certificate can cause a single out of bounds byte overwrite in wolfSSL through 3.10.2 resulting in potential certificate validation vulnerabilities, denial of service and possible remote code execution. | 9.8 |
| 2017-05-22 | CVE-2017-6988 | Improper Certificate Validation vulnerability in Apple mac OS X An issue was discovered in certain Apple products. | 5.9 |
| 2017-05-22 | CVE-2017-2498 | Improper Certificate Validation vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 7.5 |
| 2017-05-15 | CVE-2017-8943 | Improper Certificate Validation vulnerability in Puma Pumatrac 3.0.2 The PUMA PUMATRAC app 3.0.2 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | 5.9 |
| 2017-05-15 | CVE-2017-8942 | Improper Certificate Validation vulnerability in Yottamark Inc. Shopwell - Healthy Diet & Grocery Food Scanner The YottaMark ShopWell - Healthy Diet & Grocery Food Scanner app 5.3.7 through 5.4.2 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | 5.9 |