Description
The product uses OpenSSL and trusts or uses a certificate without using the SSL_get_verify_result() function to ensure that the certificate satisfies all necessary security requirements.
CVE vulnerabilities with CWE-599 (13)
10.0
CVSS
CRITICAL
CVE-2025-12553
pub. 2025-10-31
8.8
CVSS
HIGH
CVE-2024-40464
pub. 2024-07-31
8.3
CVSS
HIGH
CVE-2022-31105
pub. 2022-07-12
8.1
CVSS
HIGH
CVE-2026-25060
pub. 2026-02-02
8.1
CVSS
HIGH
CVE-2021-21374
pub. 2021-03-26
7.5
CVSS
HIGH
CVE-2025-56230
pub. 2025-11-04
7.5
CVSS
HIGH
CVE-2024-41265
pub. 2024-08-01
7.4
CVSS
HIGH
CVE-2023-48052
pub. 2023-11-16
7.1
CVSS
HIGH
CVE-2024-41253
pub. 2024-07-31
6.8
CVSS
MEDIUM
CVE-2025-56232
pub. 2025-11-05
6.8
CVSS
MEDIUM
CVE-2024-36755
pub. 2024-06-27
5.3
CVSS
MEDIUM
CVE-2025-56146
pub. 2025-09-23
4.6
CVSS
MEDIUM
CVE-2025-63432
pub. 2025-11-24