CVE-2025-64685

In JetBrains YouTrack before 2025.3.104432 missing TLS certificate validation enabled data disclosure...

CVE-2025-56230

Tencent Docs Desktop 3.9.20 and earlier suffers from Missing SSL Certificate Validation in the update component...

CVE-2025-56232

GOG Galaxy 2.0.0.2 suffers from Missing SSL Certificate Validation. An attacker who controls the local network, DNS, or a proxy can perform a man-in-the-middle MitM attack to intercept update requests and replace installer or update packages with malicious files...

EUVD-2022-25331

Malicious code in bioql PyPI...

EUVD-2025-5052

Malicious code in bioql PyPI...

CVE-2025-56146

Indian Bank IndSMART Android App 3.8.1 is vulnerable to Missing SSL Certificate Validation in NuWebViewActivity...

CVE-2025-56146

CVE-2025-56146 affects Indian Bank IndSMART Android App v3.8.1, with a missing SSL certificate validation flaw in the NuWebViewActivity. Affected software is the Indian Bank IndSMART Android App; the underlying cause is lack of SSL certificate validation in NuWebViewActivity, enabling potential m...

CVE-2025-56146

Indian Bank IndSMART Android App 3.8.1 is vulnerable to Missing SSL Certificate Validation in NuWebViewActivity...

PT-2025-39203

Name of the Vulnerable Software and Affected Versions Indian Bank IndSMART Android App version 3.8.1 Description The Indian Bank IndSMART Android App version 3.8.1 exhibits a flaw related to missing SSL certificate validation within the NuWebViewActivity component. This could potentially allow fo...

User Impersonation

Overview Affected versions of this package are vulnerable to User Impersonation due to insufficient authentication checks in the client and server processes. An attacker can gain unauthorized access to sensitive data by establishing a connection without proper certificate validation or...

Devolutions Remote Desktop Manager 信任管理问题漏洞

Devolutions Remote Desktop Manager is an application from Devolutions Canada Inc. It provides remote desktop management functionality. Devolutions Remote Desktop Manager is vulnerable to a trust management issue that stems from missing certificate validation. The following products and versions a...

CVE-2024-31872

IBM Security Verify Access Appliance 10.0.0 through 10.0.7 could allow a malicious actor to conduct a man in the middle attack when deploying Open Source scripts due to missing certificate validation. IBM X-Force ID: 287316...

Httpful is Missing Certificate Validation

Httpful has Insecure HTTPS Connections due to Missing Default Certificate Validation...

CVE-2024-31872

CVE-2024-31872 concerns IBM Security Verify Access Appliance (affected: 10.0.0–10.0.7). The root cause, per the sources, is missing certificate validation during deployment of Open Source scripts, enabling a malicious actor to conduct a man-in-the-middle attack. Impact is described as compromisin...

PT-2024-14309 · Ylianst · Ylianst Meshcentral

Name of the Vulnerable Software and Affected Versions: Ylianst MeshCentral version 1.1.16 Description: The issue concerns missing SSL certificate validation. Recommendations: For Ylianst MeshCentral version 1.1.16, consider implementing proper SSL certificate validation to mitigate the risk of...

PYSEC-2023-243

Missing SSL certificate validation in localstack v2.3.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack...

CVE-2023-25392

Allegro Tech BigFlow 1.6 is vulnerable to Missing SSL Certificate Validation...

SUSE CVE-2018-1000500

Busybox contains a Missing SSL certificate validation vulnerability in The "busybox wget" applet that can result in arbitrary code execution. This attack appear to be exploitable via Simply download any file over HTTPS using "busybox wget https://compromised-domain.com/important-file"...

SUSE CVE-2019-15525

There is Missing SSL Certificate Validation in the pw3270 terminal emulator before version 5.1...

Privilege escalation

In ccu, there is a possible escalation of privilege due to a missing certificate validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no needed for exploitation. Patch ID: ALPS06183315; Issue ID: ALPS06183315...