Login Sign Up

CWE-599: CWE-599

4
Total CVEs
1
Critical
1
High
7.0
Avg CVSS

Yearly Trend

2026
1
2025
3

Top Affected Vendors

1 Xtooltech 1
2 Azure Access 1
3 Oplist 1

All CWE-599 CVEs (4)

CVE-2025-12553
9.8

This vulnerability in BLU-IC2 and BLU-IC4 email servers disables certificate verification, allowing man-in-the-middle attacks. Attackers can intercept...

Oct 31, 2025
CVE-2026-25060
8.1

OpenList Frontend versions before 4.1.10 have TLS certificate verification disabled by default for storage communications, allowing Man-in-the-Middle ...

Feb 2, 2026
CVE-2025-56146
5.3

The Indian Bank IndSMART Android app version 3.8.1 fails to properly validate SSL certificates in its NuWebViewActivity component, allowing potential ...

Sep 23, 2025
CVE-2025-63432
4.6

The Xtooltech Xtool AnyScan Android application fails to validate TLS certificates, allowing attackers on the same network to perform man-in-the-middl...

Nov 24, 2025

About CWE-599 (CWE-599)

Our database tracks 4 CVEs classified as CWE-599, with 1 rated critical and 1 rated high severity. The average CVSS score for CWE-599 vulnerabilities is 7.0.

External reference: View CWE-599 on MITRE CWE →

Monitor CWE-599 Vulnerabilities

Get alerted when new CWE-599 CVEs affect your infrastructure.

Start Monitoring Free