Vulnerabilities > Improper Verification of Cryptographic Signature
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-12 | CVE-2023-2030 | Improper Verification of Cryptographic Signature vulnerability in Gitlab An issue has been discovered in GitLab CE/EE affecting all versions from 12.2 prior to 16.5.6, 16.6 prior to 16.6.4, and 16.7 prior to 16.7.2 in which an attacker could potentially modify the metadata of signed commits. | 5.3 |
| 2024-01-12 | CVE-2016-20021 | Improper Verification of Cryptographic Signature vulnerability in Gentoo Portage In Gentoo Portage before 3.0.47, there is missing PGP validation of executed code: the standalone emerge-webrsync downloads a .gpgsig file but does not perform signature verification. | 9.8 |
| 2024-01-09 | CVE-2023-5347 | Improper Verification of Cryptographic Signature vulnerability in Korenix products An Improper Verification of Cryptographic Signature vulnerability in the update process of Korenix JetNet Series allows replacing the whole operating system including Trusted Executables. This issue affects JetNet devices older than firmware version 2024/01. | 9.1 |
| 2024-01-04 | CVE-2022-3864 | Improper Verification of Cryptographic Signature vulnerability in Hitachienergy products A vulnerability exists in the Relion update package signature validation. | 4.5 |
| 2023-12-29 | CVE-2023-23431 | Improper Verification of Cryptographic Signature vulnerability in Hihonor Nth-An00 Firmware Some Honor products are affected by signature management vulnerability, successful exploitation could cause the forged system file overwrite the correct system file. | 7.1 |
| 2023-12-29 | CVE-2023-23432 | Improper Verification of Cryptographic Signature vulnerability in Hihonor Nth-An00 Firmware Some Honor products are affected by signature management vulnerability, successful exploitation could cause the forged system file overwrite the correct system file. | 7.1 |
| 2023-12-29 | CVE-2023-23433 | Improper Verification of Cryptographic Signature vulnerability in Hihonor Nth-An00 Firmware Some Honor products are affected by signature management vulnerability, successful exploitation could cause the forged system file overwrite the correct system file. | 7.1 |
| 2023-12-29 | CVE-2023-23435 | Improper Verification of Cryptographic Signature vulnerability in Hihonor Magic OS Some Honor products are affected by signature management vulnerability, successful exploitation could cause the forged system file overwrite the correct system file | 7.1 |
| 2023-12-29 | CVE-2023-23436 | Improper Verification of Cryptographic Signature vulnerability in Hihonor Magic OS Some Honor products are affected by signature management vulnerability, successful exploitation could cause the forged system file overwrite the correct system file | 7.1 |
| 2023-11-14 | CVE-2023-20567 | Improper Verification of Cryptographic Signature vulnerability in multiple products Improper signature verification of RadeonTM RX Vega M Graphics driver for Windows may allow an attacker with admin privileges to launch AMDSoftwareInstaller.exe without validating the file signature potentially leading to arbitrary code execution. | 6.7 |