BaseDraft
CWE-347Improper Verification of Cryptographic Signature
Category: other
Description
The product does not verify, or incorrectly verifies, the cryptographic signature for data.
Common consequences· 1
- Access Control / Integrity / Confidentiality — Gain Privileges or Assume Identity, Modify Application Data, Execute Unauthorized Code or CommandsAn attacker could gain access to sensitive data and possibly execute unauthorized code.
Related CAPEC attack patterns· 2
References
Exploits (incoming)2
| Type | Target | Confidence | Tier |
|---|---|---|---|
| AttackPattern | Signature Spoofing by Improper Validationcapec-475 | 100% | live |
| AttackPattern | Padding Oracle Crypto Attackcapec-463 | 100% | live |
Compliance frameworks addressing this (incoming)3
| Type | Target | Confidence | Tier |
|---|---|---|---|
| ComplianceControl | owasp_api_top10-api02 | 100% | live |
| ComplianceControl | owasp_top10-a08 | 100% | live |
| ComplianceControl | iso27001-a.8.24 | 100% | live |
(incoming)72
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Vulnerability | CVE-2025-12007cve-2025-12007 | 0% | live |
| Vulnerability | CVE-2025-12295cve-2025-12295 | 0% | live |
| Vulnerability | CVE-2025-15444cve-2025-15444 | 0% | live |
| Vulnerability | CVE-2025-2233cve-2025-2233 | 0% | live |
| Vulnerability | CVE-2025-23206cve-2025-23206 | 0% | live |
| Vulnerability | CVE-2025-23364cve-2025-23364 | 0% | live |
| Vulnerability | CVE-2025-23369cve-2025-23369 | 0% | live |
| Vulnerability | CVE-2025-25291cve-2025-25291 | 0% | live |
| Vulnerability | CVE-2025-25292cve-2025-25292 | 0% | live |
| Vulnerability | CVE-2025-2764cve-2025-2764 | 0% | live |
| Vulnerability | CVE-2025-27670cve-2025-27670 | 0% | live |
| Vulnerability | CVE-2025-27773cve-2025-27773 | 0% | live |
| Vulnerability | CVE-2025-27813cve-2025-27813 | 0% | live |
| Vulnerability | CVE-2025-32977cve-2025-32977 | 0% | live |
| Vulnerability | CVE-2025-33074cve-2025-33074 | 0% | live |
| Vulnerability | CVE-2025-36418cve-2025-36418 | 0% | live |
| Vulnerability | CVE-2025-3757cve-2025-3757 | 0% | live |
| Vulnerability | CVE-2025-40758cve-2025-40758 | 0% | live |
| Vulnerability | CVE-2025-40934cve-2025-40934 | 0% | live |
| Vulnerability | CVE-2025-43023cve-2025-43023 | 0% | live |
| Vulnerability | CVE-2025-4658cve-2025-4658 | 0% | live |
| Vulnerability | IGEL OS Use of a Key Past its Expiration Date Vulnerabilitycve-2025-47827 | 0% | live |
| Vulnerability | CVE-2025-52648cve-2025-52648 | 0% | live |
| Vulnerability | CVE-2025-54419cve-2025-54419 | 0% | live |
| Vulnerability | CVE-2025-54982cve-2025-54982 | 0% | live |
| Vulnerability | CVE-2025-55278cve-2025-55278 | 0% | live |
| Vulnerability | CVE-2025-57801cve-2025-57801 | 0% | live |
| Vulnerability | CVE-2025-59334cve-2025-59334 | 0% | live |
| Vulnerability | Fortinet Multiple Products Improper Verification of Cryptographic Signature Vulnerabilitycve-2025-59718 | 0% | live |
| Vulnerability | CVE-2025-59719cve-2025-59719 | 0% | live |
Showing top 30 of 72 by confidence. Click any target to see the full neighbourhood.
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.