Vulnerabilities > Insufficient Verification of Data Authenticity
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-09 | CVE-2024-12369 | A vulnerability was found in OIDC-Client. | 4.2 |
| 2024-11-24 | CVE-2024-11666 | Insufficient Verification of Data Authenticity vulnerability in Echarge Salia Plcc Firmware Affected devices beacon to eCharge cloud infrastructure asking if there are any command they should run. | 9.8 |
| 2024-11-22 | CVE-2024-8356 | Insufficient Verification of Data Authenticity vulnerability in Visteon Infotainment Cmu150Na74.00.324A Visteon Infotainment VIP MCU Code Insufficient Validation of Data Authenticity Local Privilege Escalation Vulnerability. | 7.8 |
| 2024-09-26 | CVE-2024-43108 | Insufficient Verification of Data Authenticity vulnerability in Gotenna The goTenna Pro ATAK Plugin uses AES CTR type encryption for short, encrypted messages without any additional integrity checking mechanisms. This leaves messages malleable to an attacker that can access the message. | 6.5 |
| 2024-09-26 | CVE-2024-47123 | Insufficient Verification of Data Authenticity vulnerability in Gotenna PRO The goTenna Pro App uses AES CTR type encryption for short, encrypted messages without any additional integrity checking mechanisms. | 3.1 |
| 2024-09-23 | CVE-2024-23922 | Insufficient Verification of Data Authenticity vulnerability in Sony Xav-Ax5500 Firmware 1.13 Sony XAV-AX5500 Insufficient Firmware Update Validation Remote Code Execution Vulnerability. | 6.8 |
| 2024-09-19 | CVE-2024-45410 | Insufficient Verification of Data Authenticity vulnerability in Traefik Traefik is a golang, Cloud Native Application Proxy. | 7.5 |
| 2024-09-19 | CVE-2022-4533 | Insufficient Verification of Data Authenticity vulnerability in Felixmoira Limit Login Attempts Plus The Limit Login Attempts Plus plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 1.1.0. | 5.3 |
| 2024-09-12 | CVE-2024-42483 | Insufficient Verification of Data Authenticity vulnerability in Espressif Esp-Now ESP-NOW Component provides a connectionless Wi-Fi communication protocol. | 6.5 |
| 2024-08-31 | CVE-2022-4539 | Insufficient Verification of Data Authenticity vulnerability in Miniorange web Application Firewall The Web Application Firewall plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 2.1.2. | 5.3 |