CWE-297

Improper Validation of Certificate Hostname

No catalog description on file. The MITRE CWE site has the canonical reference.

CVEs (total)

10

Critical

0

High

2

Medium

7

Low

1

Severity distribution

Recent CVEs

showing 10 of 10

CVE-2025-25253High· 7.5EPSS 0%4 d ago
An Improper Validation of Certificate with Host Mismatch vulnerability [CWE-297] in FortiProxy version 7.6.1 and below, version 7.4.8 and below, 7.2 all versions, 7.0 all versions and FortiOS version 7.6.2 and below, version 7.4.8 and below
CVE-2014-8151MediumEPSS 0%25 d ago
curl/libcurl: Secure Transport certificate check bypass
curl
CVE-2016-3739High· 5.3EPSS 1%25 d ago
curl/libcurl: TLS certificate check bypass with mbedTLS/PolarSSL
curl
CVE-2014-0139MediumEPSS 1%25 d ago
curl/libcurl: IP address wildcard certificate validation
curl
CVE-2013-4545MediumEPSS 0%2026-04-25
curl/libcurl: cert name check ignore OpenSSL
curl
CVE-2014-1263MediumEPSS 3%2026-04-25
curl/libcurl: not verifying certs for TLS to IP address / Secure Transport
curl
CVE-2024-2466MediumEPSS 0%2026-04-25
curl/libcurl: TLS certificate check bypass with mbedTLS
curl
CVE-2014-2522MediumEPSS 0%2026-04-25
curl/libcurl: not verifying certs for TLS to IP address / Schannel
curl
CVE-2025-15079Low· 5.3EPSS 0%2026-04-25
curl/libcurl: libssh global known_hosts override
curl
CVE-2013-6422MediumEPSS 0%2026-04-25
curl/libcurl: cert name check ignore with GnuTLS
curl

CWE catalog data sourced from MITRE. CVE associations come from NVD weakness mappings; some CVEs carry multiple CWEs.