Search

Blog Stats Labs CLI MCP API Limits About Privacy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Blog Statistics Labs CLI Tool MCP Server API Documentation Rate Limits About Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-328

CWE-328

Use of Weak Hash

Parent: CWE-326 - Inadequate Encryption Strength

The product uses an algorithm that produces a digest (output value) that does not meet security expectations for a hash function that allows an adversary to reasonably determine the original input (preimage attack), find another input that can produce the same hash (2nd preimage attack), or find multiple inputs that evaluate to the same hash (birthday attack).

53 vulnerabilities with CWE-328

CVE-2025-41762 MEDIUM

wwwdnload.cgi - Info Disclosure

CVE-2026-27754 MEDIUM

SODOLA SL902-SWTGW124AS Firmware <200.1.20 - Auth Bypass

CVE-2025-14636 LOW

Tenda AX9 22.03.01.46 - Weak Hash

CVE-2025-11650 LOW

Furbo Mini Firmware < 074 - Broken Cryptographic Algorithm

CVE-2025-59354 MEDIUM

Dragonfly <2.1.0 - Info Disclosure

CVE-2025-9078 MEDIUM

Mattermost <10.8.4 - Info Disclosure

CVE-2025-55053 MEDIUM

Weak Hash - Info Disclosure

CVE-2025-9383 LOW

FNKvision Y215 CCTV Camera - Weak Hash

CVE-2025-54535 MEDIUM

JetBrains TeamCity <2025.07 - Info Disclosure

CVE-2025-8260 LOW

Vaelsys - Broken Cryptographic Algorithm

CVE-2025-41256 HIGH

Cyberduck <9.1.6 - Mountain Duck <4.17.5 - TLS Pinning Weakness

CVE-2025-49197 MEDIUM

FTP App - Info Disclosure

CVE-2024-23589 MEDIUM

HCL Glovius Cloud - Info Disclosure

CVE-2025-48931 LOW

TeleMessage <2025-05-05 - Info Disclosure

CVE-2024-38341 MEDIUM

IBM Sterling Secure Proxy <6.2.0.1 - Info Disclosure

CVE-2025-41652 CRITICAL

Devices - Auth Bypass

CVE-2025-47276 HIGH

Actualizer <1.2.0 - Info Disclosure

CVE-2024-47829 MEDIUM

pnpm <10.0.0 - Info Disclosure

CVE-2025-3576 MEDIUM

MIT Kerberos - Info Disclosure

CVE-2025-31130 MEDIUM

gitoxide <0.42.0 - Info Disclosure

CVE-2025-2920 LOW

Netis WF-2404 1.1.124EN - Weak Hash

CVE-2025-0508 MEDIUM

SageMaker Workflow - Info Disclosure

CVE-2025-26486 MEDIUM

Beta80 Life 1st Identity Mgr <1.5.2.142 - Info Disclosure

CVE-2025-27595 CRITICAL

Device - Info Disclosure

CVE-2024-10026 MEDIUM

Google's gVisor - Info Disclosure

Page 1 of 3 Next

Details

Vulnerabilities 53

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy