Vulnerabilities > Improper Certificate Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-21 | CVE-2016-4830 | Improper Certificate Validation vulnerability in Akindo-Sushiro Sushiro Sushiro App for iOS 2.1.16 and earlier and Sushiro App for Android 2.1.16.1 and earlier do not verify SSL certificates. | 5.9 |
| 2017-04-21 | CVE-2016-4829 | Improper Certificate Validation vulnerability in DMM PPV Play Player 1.2.0/2.1.2 DMM Movie Player App for Android before 1.2.1, and DMM Movie Player App for iPhone/iPad before 2.1.3 does not verify SSL certificates. | 5.9 |
| 2017-04-21 | CVE-2016-1184 | Improper Certificate Validation vulnerability in Tokyostarbank Tokyo Star Bank 1.3 Tokyo Star bank App for Android before 1.4 and Tokyo Star bank App for iOS before 1.4 do not validate SSL certificates. | 5.9 |
| 2017-04-21 | CVE-2016-1148 | Improper Certificate Validation vulnerability in Photosynth Akerun 1.2.3 Akerun - Smart Lock Robot App for iOS before 1.2.4 does not verify SSL certificates. | 8.1 |
| 2017-04-20 | CVE-2017-2784 | Improper Certificate Validation vulnerability in ARM Mbed TLS An exploitable free of a stack pointer vulnerability exists in the x509 certificate parsing code of ARM mbed TLS before 1.3.19, 2.x before 2.1.7, and 2.4.x before 2.4.2. | 8.1 |
| 2017-04-20 | CVE-2016-4818 | Improper Certificate Validation vulnerability in DMM products DMMFX Trade for Android 1.5.0 and earlier, DMMFX DEMO Trade for Android 1.5.0 and earlier, and GAITAMEJAPAN FX Trade for Android 1.4.0 and earlier do not verify SSL certificates. | 5.9 |
| 2017-04-18 | CVE-2017-5653 | Improper Certificate Validation vulnerability in Apache CXF JAX-RS XML Security streaming clients in Apache CXF before 3.1.11 and 3.0.13 do not validate that the service response was signed or encrypted, which allows remote attackers to spoof servers. | 5.3 |
| 2017-04-13 | CVE-2013-6662 | Improper Certificate Validation vulnerability in Google Chrome Google Chrome caches TLS sessions before certificate validation occurs. | 6.5 |
| 2017-04-13 | CVE-2016-1132 | Improper Certificate Validation vulnerability in Docomo Shoplat Shoplat App for iOS 1.10.00 through 1.18.00 does not properly verify SSL certificates. | 7.5 |
| 2017-04-10 | CVE-2015-7826 | Improper Certificate Validation vulnerability in Botan Project Botan botan 1.11.x before 1.11.22 improperly handles wildcard matching against hostnames, which might allow remote attackers to have unspecified impact via a valid X.509 certificate, as demonstrated by accepting *.example.com as a match for bar.foo.example.com. | 9.8 |