CWE-345 - Insufficient Verification of Data Authenticity

Description

Because of improper verification of data origin or authenticity, software can receive invalid data.
The vulnerability is introduced during Architecture and Design, Implementation stages.

Latest vulnerabilities for CWE-345

Multiple vulnerabilities in IBM webMethods Managed File Transfer 2025-04-28
Critical Yes Public exploit

Multiple vulnerabilities in IBM Process Mining 2025-04-18
High Yes Public exploit

Multiple vulnerabilities in KDE Connect apps 2025-04-18
Medium Yes

IBM Cloud Pak for Data System 2.0 update for Certifi 2025-04-15
Medium Yes

Multiple vulnerabilities in IBM Business Automation Manager Open Editions 2025-04-10
High Yes Public exploit

Insufficient verification of data authenticity in Microsoft Windows Virtualization-Based Security (VBS) 2025-04-09
Low Yes

Multiple vulnerabilities in IBM Concert Software 2025-03-25
High Yes Public exploit

Authorization bypass in Wildfly Elytron 2025-03-24
Low Yes

Multiple vulnerabilities in IBM Cloud Pak for AIOps 2025-03-21
Critical Yes Public exploit

Multiple vulnerabilities in IBM Cognos Dashboards on Cloud Pak for Data 2025-03-20
Critical Yes

References

Description of CWE-345 on Mitre website