VYPR

CWE-295

Improper Certificate Validation

BaseDraft

Description

The product does not validate, or incorrectly validates, a certificate.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-459 · CAPEC-475

CVEs mapped to this weakness (720)

page 32 of 36
  • CVE-2021-31597Apr 22, 2021
    risk 0.00cvss epss 0.02

    The xmlhttprequest-ssl package before 1.6.1 for Node.js disables SSL certificate validation by default, because rejectUnauthorized (when the property exists but is undefined) is considered to be false within the https.request function of Node.js. In other words, no certificate…

  • CVE-2020-7924Apr 12, 2021
    risk 0.00cvss epss 0.01

    Usage of specific command line parameter in MongoDB Tools which was originally intended to just skip hostname checks, may result in MongoDB skipping all certificate validation. This may result in accepting invalid certificates.This issue affects: MongoDB Inc. MongoDB Database…

  • CVE-2021-22511Apr 8, 2021
    risk 0.00cvss epss 0.00

    Improper Certificate Validation vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects version 6.7 and earlier versions. The vulnerability could allow unconditionally disabling of SSL/TLS certificates.

  • CVE-2021-30130Apr 6, 2021
    risk 0.00cvss epss 0.01

    phpseclib before 2.0.31 and 3.x before 3.0.7 mishandles RSA PKCS#1 v1.5 signature verification.

  • CVE-2021-3450Mar 25, 2021
    risk 0.00cvss epss 0.18

    The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve…

  • CVE-2021-28363Mar 15, 2021
    risk 0.00cvss epss 0.02

    The urllib3 library 1.26.x before 1.26.4 for Python omits SSL certificate validation in some cases involving HTTPS to HTTPS proxies. The initial connection to the HTTPS proxy (if an SSLContext isn't given via proxy_config) doesn't verify the hostname of the certificate. This…

  • CVE-2021-27098Mar 5, 2021
    risk 0.00cvss epss 0.01

    In SPIRE 0.8.1 through 0.8.4 and before versions 0.9.4, 0.10.2, 0.11.3 and 0.12.1, specially crafted requests to the FetchX509SVID RPC of SPIRE Server’s Legacy Node API can result in the possible issuance of an X.509 certificate with a URI SAN for a SPIFFE ID that the agent is…

  • CVE-2020-28972Feb 27, 2021
    risk 0.00cvss epss 0.03

    In SaltStack Salt before 3002.5, authentication to VMware vcenter, vsphere, and esxi servers (in the vmware.py files) does not always validate the SSL/TLS certificate.

  • CVE-2020-35662Feb 27, 2021
    risk 0.00cvss epss 0.03

    In SaltStack Salt before 3002.5, when authenticating to services using certain modules, the SSL certificate is not always validated.

  • CVE-2021-20328Feb 25, 2021
    risk 0.00cvss epss 0.00

    Specific versions of the Java driver that support client-side field level encryption (CSFLE) fail to perform correct host name verification on the KMS server’s certificate. This vulnerability in combination with a privileged network position active MITM attack could result in…

  • CVE-2021-20327Feb 25, 2021
    risk 0.00cvss epss 0.00

    A specific version of the Node.js mongodb-client-encryption module does not perform correct validation of the KMS server’s certificate. This vulnerability in combination with a privileged network position active MITM attack could result in interception of traffic between the…

  • CVE-2020-24393Feb 19, 2021
    risk 0.00cvss epss 0.01

    TweetStream 2.6.1 uses the library eventmachine in an insecure way that does not have TLS hostname validation. This allows an attacker to perform a man-in-the-middle attack.

  • CVE-2020-24392Feb 19, 2021
    risk 0.00cvss epss 0.01

    In voloko twitter-stream 0.1.10, missing TLS hostname validation allows an attacker to perform a man-in-the-middle attack against users of the library (because eventmachine is misused).

  • CVE-2020-29457Feb 16, 2021
    risk 0.00cvss epss 0.00

    A Privilege Elevation vulnerability in OPC UA .NET Standard Stack 1.4.363.107 could allow a rogue application to establish a secure connection.

  • CVE-2021-0341Feb 10, 2021
    risk 0.00cvss epss 0.01

    In verifyHostName of OkHostnameVerifier.java, there is a possible way to accept a certificate for the wrong domain due to improperly used crypto. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2021-25835Feb 8, 2021
    risk 0.00cvss epss 0.01

    Cosmos Network Ethermint <= v0.4.0 is affected by a cross-chain transaction replay vulnerability in the EVM module. Since ethermint uses the same chainIDEpoch and signature schemes with ethereum for compatibility, a verified signature in ethereum is still valid in ethermint with…

  • CVE-2020-24025Jan 11, 2021
    risk 0.00cvss epss 0.01

    Certificate validation in node-sass 2.0.0 to 4.14.1 is disabled when requesting binaries even if the user is not specifying an alternative download path.

  • CVE-2020-27589Nov 6, 2020
    risk 0.00cvss epss 0.01

    Synopsys hub-rest-api-python (aka blackduck on PyPI) version 0.0.25 - 0.0.52 does not validate SSL certificates in certain cases.

  • CVE-2020-13955Oct 9, 2020
    risk 0.00cvss epss 0.02

    HttpUtils#getURLConnection method disables explicitly hostname verification for HTTPS connections making clients vulnerable to man-in-the-middle attacks. Calcite uses internally this method to connect with Druid and Splunk so information leakage may happen when using the…

  • CVE-2016-11086Sep 24, 2020
    risk 0.00cvss epss 0.01

    lib/oauth/consumer.rb in the oauth-ruby gem through 0.5.4 for Ruby does not verify server X.509 certificates if a certificate bundle cannot be found, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information.