CWE-298 · Improper Validation of Certificate Expiration
4 CVEs classified under CWE-298 (Improper Validation of Certificate Expiration). Browse by severity and year.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-42446 | Medium | 6.5 | 2023-09-18 | Pow is a authentication and user management solution for Phoenix and Plug-based apps. Starting in version 1.0.14 and prior to version 1.0.34, use of `Pow.Store… |
CVE-2025-59036 | Medium | 5.5 | 2025-09-09 | Infrahub offers a central hub to manage data, templates, and playbooks. Prior to versiond 1.3.9 and 1.4.5, a bug in the authentication logic will cause API tok… |
CVE-2025-61736 | | 2025-12-17 | Successful exploitation of this vulnerability could result in the product failing to re-establish communication once the certificate expires. | |
CVE-2025-4384 | | 2025-05-06 | The MQTT add-on of PcVue fails to verify that a remote device’s certificate has not already expired or has not yet become valid. This allows malicious devices… |