Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-295 (证书验证不恰当) — Vulnerability Class 474

474 vulnerabilities classified as CWE-295 (证书验证不恰当). AI Chinese analysis included.

CWE-295 represents a critical cryptographic weakness where software fails to properly validate digital certificates, undermining the integrity of secure communications. Attackers typically exploit this flaw by performing man-in-the-middle attacks, intercepting traffic between a client and server. By presenting a forged or invalid certificate, adversaries can decrypt sensitive data, inject malicious content, or impersonate legitimate services without detection. This vulnerability is particularly dangerous in applications relying on Transport Layer Security for confidentiality. To prevent such breaches, developers must implement rigorous certificate validation mechanisms, ensuring that the presented certificate is signed by a trusted Certificate Authority and matches the expected hostname. Additionally, enabling Certificate Pinning and strictly rejecting expired or revoked certificates further hardens the application against interception attempts, thereby preserving the authenticity and security of the data exchange.

MITRE CWE Description
The product does not validate, or incorrectly validates, a certificate.
Common Consequences (1)
Integrity, AuthenticationBypass Protection Mechanism, Gain Privileges or Assume Identity
When a certificate is invalid or malicious, it might allow an attacker to spoof a trusted entity by interfering in the communication path between the host and client. The product might connect to a malicious host while believing it is a trusted host, or the product might be deceived into accepting s…
Mitigations (2)
Architecture and Design, ImplementationCertificates should be carefully managed and checked to assure that data are encrypted with the intended owner's public key.
ImplementationIf certificate pinning is being used, ensure that all relevant properties of the certificate are fully validated before the certificate is pinned, including the hostname.
Examples (2)
This code checks the certificate of a connected peer.
if ((cert = SSL_get_peer_certificate(ssl)) && host) foo=SSL_get_verify_result(ssl); if ((X509_V_OK==foo) || X509_V_ERR_SELF_SIGNED_CERT_IN_CHAIN==foo)) // certificate looks good, host can be trusted
Bad · C
The following OpenSSL code obtains a certificate and verifies it.
cert = SSL_get_peer_certificate(ssl); if (cert && (SSL_get_verify_result(ssl)==X509_V_OK)) { // do secret things }
Bad · C
CVE IDTitleCVSSSeverityPublished
CVE-2026-27133 Strimzi All CAs from CA chain will be trusted in Kafka Connect and Kafka MirrorMaker 2 target clusters — strimzi-kafka-operator 5.9 Medium2026-02-20
CVE-2026-24122 Cosign Certificate Chain Expiry Validation Issue Allows Issuing Certificate Expiry to Be Overlooked — cosign 3.7 Low2026-02-19
CVE-2026-0872 Improper Certificate Validation vulnerability in Thales SafeNet Agent for Windows Logon — SafeNet Agent for Windows Logon 7.5AIHighAI2026-02-13
CVE-2025-9293 Insufficient Certificate Validation in Multiple Mobile Applications Allows Man in the Middle Interception — Tapo App 6.8AIMediumAI2026-02-13
CVE-2025-15573 Missing Certificate Validation for Solax Power Pocket WiFi models MQTT Cloud Connection — Pocket WiFi 3.0 8.1AIHighAI2026-02-12
CVE-2026-0228 PAN-OS: Improper Validation of Terminal Server Agent Certificate — Cloud NGFW 7.5AIHighAI2026-02-11
CVE-2026-21228 Azure Local Remote Code Execution Vulnerability — Azure Local 8.1 High2026-02-10
CVE-2026-25961 SumatraPDF Update MITM -> Arbitrary Code Execution — sumatrapdf 7.5 High2026-02-09
CVE-2026-22613 Eaton Network M3 安全漏洞 — Network M3 5.7 Medium2026-02-09
CVE-2026-25644 DataHub's LDAP Ingestion Source vulnerable to MITM attack through TLS downgrade — datahub 7.5 High2026-02-06
CVE-2025-15323 Tanium addressed an improper certificate validation vulnerability in Tanium Appliance. — Tanium Appliance 3.7 Low2026-02-05
CVE-2025-15557 Improper Certificate Validation in TP-Link Tapo H100 and P100 Allows Man-in-the-Middle Attack — Tapo H100 v1 7.5AIHighAI2026-02-05
CVE-2026-25160 Alist has Insecure TLS Config — alist 9.1 Critical2026-02-04
CVE-2026-24935 An improper certificate validation vulnerability was found in a third-party NAT traversal module. — ADM 8.1AIHighAI2026-02-03
CVE-2026-24934 An improper certificate validation vulnerability was found in ADM while querying an external server for the device's WAN IP address. — ADM 3.7AILowAI2026-02-03
CVE-2026-24933 An improper certificate validation vulnerability was found in ADM while sending HTTPS requests to the server. — ADM 5.9AIMediumAI2026-02-03
CVE-2026-24932 An improper certificate validation vulnerability was found in ADM while updating the DDNS settings. — ADM 7.4AIHighAI2026-02-03
CVE-2026-1778 TLS disabled by default in select aws/sagemaker-python-sdk configurations — SageMaker Python SDK 5.9 Medium2026-02-02
CVE-2026-1530 Fog-kubevirt: fog-kubevirt: man-in-the-middle vulnerability due to disabled certificate validation — Red Hat Satellite 6.16 for RHEL 8 8.1 High2026-02-02
CVE-2026-1531 Foreman-kubevirt: foreman_kubevirt: man-in-the-middle due to insecure default ssl verification — Red Hat Satellite 6.16 for RHEL 8 8.1 High2026-02-02
CVE-2025-53869 Brother Industries Brother MFPs 信任管理问题漏洞 — Multiple MFPs 3.7 Low2026-01-29
CVE-2025-32057 Misconfigured SSL/TLS communication of Redbend service for Infotainment ECU — Infotainment system ECU 6.5 Medium2026-01-22
CVE-2025-27377 Missing Validation of Self-Signed Certificates in Altium Designer Allows Man-in-the-Middle Attacks — Altium Designer 5.3 Medium2026-01-22
CVE-2025-11043 Improper Server Certificate Validation in Automation Studio — B&R Automation Studio 7.4 High2026-01-19
CVE-2026-22250 wlc can skip SSL verification — wlc 2.5 Low2026-01-12
CVE-2025-71063 Errands 信任管理问题漏洞 — Errands 8.2 High2026-01-12
CVE-2025-66001 NeuVector OpenID Connect is vulnerable to man-in-the-middle (MITM) — neuvector 8.8 High2026-01-08
CVE-2025-69412 messagelib 信任管理问题漏洞 — messagelib 3.4 Low2025-12-31
CVE-2025-52598 Insufficient certificate validation — QNV-C8012 9.8 -2025-12-26
CVE-2025-13052 An improper certificates validation vulnerability was found in the Notification settings of ADM — ADM 5.3AIMediumAI2025-12-12

Vulnerabilities classified as CWE-295 (证书验证不恰当) represent 474 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.