Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-295 (证书验证不恰当) — Vulnerability Class 474

474 vulnerabilities classified as CWE-295 (证书验证不恰当). AI Chinese analysis included.

CWE-295 represents a critical cryptographic weakness where software fails to properly validate digital certificates, undermining the integrity of secure communications. Attackers typically exploit this flaw by performing man-in-the-middle attacks, intercepting traffic between a client and server. By presenting a forged or invalid certificate, adversaries can decrypt sensitive data, inject malicious content, or impersonate legitimate services without detection. This vulnerability is particularly dangerous in applications relying on Transport Layer Security for confidentiality. To prevent such breaches, developers must implement rigorous certificate validation mechanisms, ensuring that the presented certificate is signed by a trusted Certificate Authority and matches the expected hostname. Additionally, enabling Certificate Pinning and strictly rejecting expired or revoked certificates further hardens the application against interception attempts, thereby preserving the authenticity and security of the data exchange.

MITRE CWE Description
The product does not validate, or incorrectly validates, a certificate.
Common Consequences (1)
Integrity, AuthenticationBypass Protection Mechanism, Gain Privileges or Assume Identity
When a certificate is invalid or malicious, it might allow an attacker to spoof a trusted entity by interfering in the communication path between the host and client. The product might connect to a malicious host while believing it is a trusted host, or the product might be deceived into accepting s…
Mitigations (2)
Architecture and Design, ImplementationCertificates should be carefully managed and checked to assure that data are encrypted with the intended owner's public key.
ImplementationIf certificate pinning is being used, ensure that all relevant properties of the certificate are fully validated before the certificate is pinned, including the hostname.
Examples (2)
This code checks the certificate of a connected peer.
if ((cert = SSL_get_peer_certificate(ssl)) && host) foo=SSL_get_verify_result(ssl); if ((X509_V_OK==foo) || X509_V_ERR_SELF_SIGNED_CERT_IN_CHAIN==foo)) // certificate looks good, host can be trusted
Bad · C
The following OpenSSL code obtains a certificate and verifies it.
cert = SSL_get_peer_certificate(ssl); if (cert && (SSL_get_verify_result(ssl)==X509_V_OK)) { // do secret things }
Bad · C
CVE IDTitleCVSSSeverityPublished
CVE-2020-15732 Bitdefender 多款产品信任管理问题漏洞 — Total Security 6.5 Medium2021-06-22
CVE-2021-22895 Nextcloud 信任管理问题漏洞 — Nextcloud Desktop Client 5.9 -2021-06-11
CVE-2021-21559 Dell EMC NetWorker 信任管理问题漏洞 — NetWorker 7.1 High2021-06-08
CVE-2021-29504 Improper Certificate Validation in WP-CLI framework — wp-cli 9.1 Critical2021-06-07
CVE-2007-5967 Mozilla 信任管理问题漏洞 — Mozilla Firefox 8.1 -2021-05-17
CVE-2021-22138 Elasticsearch Logstash 信任管理问题漏洞 — Elasticsearch 3.7 -2021-05-13
CVE-2021-29495 Nim stdlib httpClient does not validate peer certificates by default — security 5.9 Medium2021-05-07
CVE-2021-20989 Fibaro Home Center Insufficient remote access server authorization — Fibaro Home Center 5.9 Medium2021-04-19
CVE-2021-3460 Motorola MH702 信任管理问题漏洞 — MH702x 8.1 High2021-04-13
CVE-2020-7924 Specific command line parameter might result in accepting invalid certificate — MongoDB Database Tools 4.2 Medium2021-04-12
CVE-2021-22511 Jenkins 信任管理问题漏洞 — Micro Focus Application Automation Tools Plugin - Jenkins plugin. 5.3 -2021-04-08
CVE-2021-21385 Disabled hostname verification and accepting self-signed certificates — mifos-mobile 8.8 High2021-03-24
CVE-2021-27257 Netgear NETGEAR R7800 信任管理问题漏洞 — R7800 8.1 -2021-03-05
CVE-2021-20328 MongoDB Java driver client-side field level encryption not verifying KMS host name — mongo-java-driver 6.4 Medium2021-02-25
CVE-2021-20327 MongoDB Node.js client side field level encryption library may not be validating KMS certificate — MongoDB Node.js Driver mongodb-client-encryption module 6.4 Medium2021-02-25
CVE-2021-20230 Stunnel 信任管理问题漏洞 — stunnel 7.5 -2021-02-23
CVE-2021-1354 Cisco Unified Computing System Central Software Improper Certificate Validation Vulnerability — Cisco Unified Computing System Central Software 4.3 Medium2021-02-04
CVE-2021-1276 Cisco Data Center Network Manager Certificate Validation Vulnerabilities — Cisco Data Center Network Manager 7.5 High2021-01-20
CVE-2021-1277 Cisco Data Center Network Manager Certificate Validation Vulnerabilities — Cisco Data Center Network Manager 7.5 High2021-01-20
CVE-2020-25680 Apache httpd 信任管理问题漏洞 — JBCS httpd 7.1 -2021-01-07
CVE-2020-8289 Backblaze 信任管理问题漏洞 — Backblaze 8.8 -2020-12-27
CVE-2020-8286 HAXX libcurl 信任管理问题漏洞 — https://github.com/curl/curl 5.3 -2020-12-14
CVE-2012-0955 software-properties incorrectly validated TLS certificates — software-properties 6.8 Medium2020-12-02
CVE-2020-8279 Nextcloud 信任管理问题漏洞 — Nextcloud Social 7.4 -2020-11-19
CVE-2020-27648 Synology DiskStation Manager 信任管理问题漏洞 — DiskStation Manager (DSM) 8.3 High2020-10-29
CVE-2020-27649 Synology Router Manager 信任管理问题漏洞 — Synology Router Manager (SRM) 8.3 High2020-10-29
CVE-2020-3557 Cisco Firepower Management Center Software Denial of Service Vulnerability — Cisco Firepower Management Center 5.3 Medium2020-10-21
CVE-2020-6781 Improper Certificate Validation in Bosch Smart Home System App for iOS — Smart Home 6.8 Medium2020-09-16
CVE-2018-19946 QNAP Systems TS-870 安全漏洞 — Helpdesk 4.2 Medium2020-09-11
CVE-2020-15133 Missing TLS certificate verification in Faye Websocket — faye-websocket 8.0 High2020-07-31

Vulnerabilities classified as CWE-295 (证书验证不恰当) represent 474 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.