Vulnerabilities > Improper Verification of Cryptographic Signature
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-09 | CVE-2024-38069 | Improper Verification of Cryptographic Signature vulnerability in Microsoft products Windows Enroll Engine Security Feature Bypass Vulnerability | 7.0 |
| 2024-07-08 | CVE-2023-34435 | Improper Verification of Cryptographic Signature vulnerability in multiple products A firmware update vulnerability exists in the boa formUpload functionality of Realtek rtl819x Jungle SDK v3.4.11. | 7.2 |
| 2024-07-02 | CVE-2024-20892 | Improper Verification of Cryptographic Signature vulnerability in Samsung Android 12.0/13.0/14.0 Improper verification of signature in FilterProvider prior to SMR Jul-2024 Release 1 allows local attackers to execute privileged behaviors. | 7.8 |
| 2024-06-09 | CVE-2024-37568 | Improper Verification of Cryptographic Signature vulnerability in Authlib lepture Authlib before 1.3.1 has algorithm confusion with asymmetric public keys. | 7.5 |
| 2024-02-08 | CVE-2024-1149 | Improper Verification of Cryptographic Signature vulnerability in Snowsoftware Snow Inventory Agent Improper Verification of Cryptographic Signature vulnerability in Snow Software Inventory Agent on MacOS, Snow Software Inventory Agent on Windows, Snow Software Inventory Agent on Linux allows File Manipulation through Snow Update Packages.This issue affects Inventory Agent: through 6.12.0; Inventory Agent: through 6.14.5; Inventory Agent: through 6.7.2. | 5.5 |
| 2024-02-08 | CVE-2024-1150 | Improper Verification of Cryptographic Signature vulnerability in Snowsoftware Snow Inventory Agent Improper Verification of Cryptographic Signature vulnerability in Snow Software Inventory Agent on Unix allows File Manipulation through Snow Update Packages.This issue affects Inventory Agent: through 7.3.1. | 5.5 |
| 2024-01-31 | CVE-2024-21917 | Improper Verification of Cryptographic Signature vulnerability in Rockwellautomation Factorytalk Services Platform A vulnerability exists in Rockwell Automation FactoryTalk® Service Platform that allows a malicious user to obtain the service token and use it for authentication on another FTSP directory. | 9.1 |
| 2024-01-19 | CVE-2024-23680 | Improper Verification of Cryptographic Signature vulnerability in Amazon AWS Encryption SDK AWS Encryption SDK for Java versions 2.0.0 to 2.2.0 and less than 1.9.0 incorrectly validates some invalid ECDSA signatures. | 5.3 |
| 2024-01-17 | CVE-2023-44077 | Improper Verification of Cryptographic Signature vulnerability in Studionetworksolutions Sharebrowser Studio Network Solutions ShareBrowser before 7.0 on macOS mishandles signature verification, aka PMP-2636. | 9.8 |
| 2024-01-16 | CVE-2024-0567 | Improper Verification of Cryptographic Signature vulnerability in multiple products A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. | 7.5 |