Vulnerabilities > Improper Verification of Cryptographic Signature
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-10-28 | CVE-2022-39366 | Improper Verification of Cryptographic Signature vulnerability in Datahub Project Datahub DataHub is an open-source metadata platform. | 9.8 |
2022-10-28 | CVE-2022-3322 | Improper Verification of Cryptographic Signature vulnerability in Cloudflare Warp Mobile Client Lock Warp switch is a feature of Zero Trust platform which, when enabled, prevents users of enrolled devices from disabling WARP client. Due to insufficient policy verification by WARP iOS client, this feature could be bypassed by using the "Disable WARP" quick action. | 7.5 |
2022-10-13 | CVE-2022-31123 | Improper Verification of Cryptographic Signature vulnerability in multiple products Grafana is an open source observability and data visualization platform. | 7.8 |
2022-10-13 | CVE-2022-39300 | Improper Verification of Cryptographic Signature vulnerability in Node Saml Project Node Saml node SAML is a SAML 2.0 library based on the SAML implementation of passport-saml. | 8.1 |
2022-10-12 | CVE-2022-39299 | Improper Verification of Cryptographic Signature vulnerability in Passport-Saml Project Passport-Saml Passport-SAML is a SAML 2.0 authentication provider for Passport, the Node.js authentication library. | 8.1 |
2022-10-10 | CVE-2022-20944 | Improper Verification of Cryptographic Signature vulnerability in Cisco IOS XE A vulnerability in the software image verification functionality of Cisco IOS XE Software for Cisco Catalyst 9200 Series Switches could allow an unauthenticated, physical attacker to execute unsigned code at system boot time. | 6.8 |
2022-10-10 | CVE-2022-42010 | Improper Verification of Cryptographic Signature vulnerability in multiple products An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. | 6.5 |
2022-09-24 | CVE-2022-41340 | Improper Verification of Cryptographic Signature vulnerability in Secp256K1-Js Project Secp256K1-Js 1.0.0/1.0.1 The secp256k1-js package before 1.1.0 for Node.js implements ECDSA without required r and s validation, leading to signature forgery. | 7.5 |
2022-08-22 | CVE-2021-3521 | Improper Verification of Cryptographic Signature vulnerability in RPM There is a flaw in RPM's signature functionality. | 4.7 |
2022-07-14 | CVE-2022-31156 | Improper Verification of Cryptographic Signature vulnerability in Gradle Gradle is a build tool. | 4.4 |