Vulnerabilities > Improper Verification of Cryptographic Signature
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-29 | CVE-2020-2021 | Improper Verification of Cryptographic Signature vulnerability in Paloaltonetworks Pan-Os When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option is disabled (unchecked), improper verification of signatures in PAN-OS SAML authentication enables an unauthenticated network-based attacker to access protected resources. | 10.0 |
| 2020-06-26 | CVE-2020-9047 | Improper Verification of Cryptographic Signature vulnerability in Johnsoncontrols products A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterprise Manager versions 20.06.4.0 and prior. | 7.2 |
| 2020-06-25 | CVE-2020-15302 | Improper Verification of Cryptographic Signature vulnerability in Argent Recoverymanager In Argent RecoveryManager before 0xdc350d09f71c48c5D22fBE2741e4d6A03970E192, the executeRecovery function does not require any signatures in the zero-guardian case, which allows attackers to cause a denial of service (locking) or a takeover. | 7.5 |
| 2020-06-22 | CVE-2020-14966 | Improper Verification of Cryptographic Signature vulnerability in multiple products An issue was discovered in the jsrsasign package through 8.0.18 for Node.js. | 7.5 |
| 2020-06-16 | CVE-2020-14199 | Improper Verification of Cryptographic Signature vulnerability in Satoshilabs Trezor Model T Firmware and Trezor ONE Firmware BIP-143 in the Bitcoin protocol specification mishandles the signing of a Segwit transaction, which allows attackers to trick a user into making two signatures in certain cases, potentially leading to a huge transaction fee. | 6.5 |
| 2020-06-07 | CVE-2020-13895 | Improper Verification of Cryptographic Signature vulnerability in P5-Crypt-Perl Project P5-Crypt-Perl Crypt::Perl::ECDSA in the Crypt::Perl (aka p5-Crypt-Perl) module before 0.32 for Perl fails to verify correct ECDSA signatures when r and s are small and when s = 1. | 8.8 |
| 2020-06-04 | CVE-2019-20837 | Improper Verification of Cryptographic Signature vulnerability in Foxitsoftware Phantompdf An issue was discovered in Foxit Reader and PhantomPDF before 9.5. | 7.5 |
| 2020-06-04 | CVE-2019-20834 | Improper Verification of Cryptographic Signature vulnerability in Foxitsoftware Phantompdf An issue was discovered in Foxit PhantomPDF before 8.3.10. | 7.5 |
| 2020-06-04 | CVE-2020-13810 | Improper Verification of Cryptographic Signature vulnerability in Foxitsoftware Reader An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. | 7.5 |
| 2020-06-04 | CVE-2020-13803 | Improper Verification of Cryptographic Signature vulnerability in Foxitsoftware Phantompdf and Reader An issue was discovered in Foxit PhantomPDF Mac and Foxit Reader for Mac before 4.0. | 7.5 |