CVEs classified under CWE-299, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2025-11955: Incorrect validation of OCSP certificates vulnerability in TheGreenBow VPN, versions 7.5 and 7.6. During the IKEv2 authentication step, the…
CVE-2025-3085 — CVSS 8.1 (high): A MongoDB server under specific conditions running on Linux with TLS and CRL revocation status checking enabled, fails to check the…
CVE-2026-4428 — CVSS 7.4 (high): A logic error in CRL distribution point validation in AWS-LC before 1.71.0 causes partitioned CRLs to be incorrectly rejected as out of…
CVE-2020-16228 — CVSS 6.4 (medium): In Patient Information Center iX (PICiX) Versions C.02 and C.03, PerformanceBridge Focal Point Version A.01, IntelliVue patient monitors…
CVE-2026-6899 — CVSS 5.6 (medium): Check for certificate revocation only considers the first matching CRL and ignores other valid CRLs of the same CA in the CycloneCrypto…
CVE-2025-36057 — CVSS 5.2 (medium): IBM Cognos Analytics Mobile (iOS) 1.1.0 through 1.1.22 is vulnerable to authentication bypass by using the Local Authentication Framework…
CVE-2024-56138 — CVSS 4.0 (medium): notion-go is a collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project specifications. This issue was…