Vulnerabilities > Improper Verification of Cryptographic Signature

DATE CVE VULNERABILITY TITLE RISK
2021-03-08 CVE-2020-23967 Improper Verification of Cryptographic Signature vulnerability in Drweb Security Space 11.0/12.0
Dr.Web Security Space versions 11 and 12 allow elevation of privilege for local users without administrative privileges to NT AUTHORITY\SYSTEM due to insufficient control during autoupdate.
local
low complexity
drweb CWE-347
7.2
2021-02-10 CVE-2021-3033 Improper Verification of Cryptographic Signature vulnerability in Paloaltonetworks Prisma Cloud
An improper verification of cryptographic signature vulnerability exists in the Palo Alto Networks Prisma Cloud Compute console.
network
low complexity
paloaltonetworks CWE-347
7.5
2021-02-04 CVE-2021-1244 Improper Verification of Cryptographic Signature vulnerability in Cisco IOS XR
Multiple vulnerabilities in Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for the Cisco 8000 Series Routers could allow an authenticated, local attacker to execute unsigned code during the boot process on an affected device.
local
low complexity
cisco CWE-347
6.7
2021-02-04 CVE-2021-1136 Improper Verification of Cryptographic Signature vulnerability in Cisco IOS XR
Multiple vulnerabilities in Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for the Cisco 8000 Series Routers could allow an authenticated, local attacker to execute unsigned code during the boot process on an affected device.
local
low complexity
cisco CWE-347
6.7
2021-01-26 CVE-2020-27540 Improper Verification of Cryptographic Signature vulnerability in Company Cs-C2Shw Firmware 5.0.082.1
Bash injection vulnerability and bypass of signature verification in Rostelecom CS-C2SHW 5.0.082.1.
network
low complexity
company CWE-347
7.5
2021-01-21 CVE-2021-21239 Improper Verification of Cryptographic Signature vulnerability in multiple products
PySAML2 is a pure python implementation of SAML Version 2 Standard.
4.3
2021-01-21 CVE-2021-21238 Improper Verification of Cryptographic Signature vulnerability in Pysaml2 Project Pysaml2
PySAML2 is a pure python implementation of SAML Version 2 Standard.
4.3
2021-01-07 CVE-2018-18689 Improper Verification of Cryptographic Signature vulnerability in multiple products
The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures.
5.0
2021-01-07 CVE-2018-18688 Improper Verification of Cryptographic Signature vulnerability in multiple products
The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures.
5.0
2020-12-28 CVE-2020-26290 Improper Verification of Cryptographic Signature vulnerability in Linuxfoundation DEX
Dex is a federated OpenID Connect provider written in Go.
6.8