CWE•Variant•Incomplete•11 recent CVEs

CWE-297Improper Validation of Certificate with Host Mismatch

Description

The product communicates with a host that provides a certificate, but the product does not properly ensure that the certificate is actually associated with that host.

[object Object]

Common consequences

Access Control→Gain Privileges or Assume Identity
The data read from the system vouched for by the certificate may not be from the expected system.
Authentication,Other→Other
Trust afforded to the system in question - based on the malicious certificate - may allow for spoofing or redirection attacks.
Access Control,Other→Gain Privileges or Assume Identity,Other
If the certificate's host-specific data is not properly checked - such as the Common Name (CN) in the Subject or the Subject Alternative Name (SAN) extension of an X.509 certificate - it may be possible for a redirection or spoofing attack

Potential mitigations

Architecture and Design
Fully check the hostname of the certificate and provide the user with adequate information about the nature of the problem and how to proceed.
Implementation
If certificate pinning is being used, ensure that all relevant properties of the certificate are fully validated before the certificate is pinned, including the hostname.

Recent CVEs classified under this CWE

CVE-2026-443937.42026-06-04 CVE-2026-355638.52026-06-01 CVE-2026-427908.12026-05-27 CVE-2026-444676.82026-05-13 CVE-2026-438697.32026-05-05 CVE-2026-416037.42026-04-28 CVE-2026-227476.82026-04-22 CVE-2026-344775.92026-04-10 CVE-2024-129257.32025-09-01 CVE-2025-42954.62025-07-22 CVE-2014-35222014-08-19

Description

Common consequences

Potential mitigations

Related CWEs

Recent CVEs classified under this CWE