CWE-330
High likelihoodUse of Insufficiently Random Values
The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.
355 vulnerabilities with CWE-330
CVE-2026-25072
XikeStor SKS8310-8X <1.04.B07 - Auth Bypass
CVE-2026-20101
HIGH
Cisco Secure Firewall ASA/FTD - DoS
CVSS 8.6
CVE-2026-28415
MEDIUM
Gradio <6.6.0 - Open Redirect
CVSS 4.3
CVE-2026-27755
CRITICAL
SODOLA SL902-SWTGW124AS <200.1.20 - Auth Bypass
CVSS 9.8
CVE-2026-23999
MEDIUM
Fleet <4.80.1 - Predictable PIN Generation
CVSS 5.5
CVE-2026-27637
CRITICAL
FreeScout <1.8.206 - Auth Bypass
CVSS 9.8
CVE-2024-48928
HIGH
Piwigo 14.x - Weak Secret Key Vulnerability
CVSS 7.5
CVE-2026-27515
CRITICAL
Binardat 10G08-0800GSM <V300SP10260209 - Auth Bypass
CVSS 9.1
CVE-2026-2966
LOW
Cesanta Mongoose <=7.20 - DNS Transaction ID Weakness
CVSS 3.7
CVE-2025-15574
MEDIUM
Solax Cloud MQTT - Authentication Bypass
CVSS 6.5
CVE-2025-64097
CRITICAL
NervesHub <2.3.0 - Info Disclosure
CVSS 9.8
CVE-2025-68704
HIGH
Jervis <2.2 - Info Disclosure
CVSS 7.5
CVE-2025-11723
MEDIUM
Simply Schedule Appointments Booking Plugin <1.6.9.5 - Info Disclosure
CVSS 6.5
CVE-2026-21444
MEDIUM
libtpms <0.10.2 - Buffer Overflow
CVSS 5.5
CVE-2025-11707
MEDIUM
Login Lockdown & Protection <2.14 - Auth Bypass
CVSS 5.3
CVE-2025-13955
EZCast Pro II <1.17478.146 - Info Disclosure
CVE-2025-66511
MEDIUM
Nextcloud Calendar <6.0.3 - Info Disclosure
CVSS 4.8
CVE-2025-13353
MEDIUM
gokey <0.2.0 - Info Disclosure
CVSS 5.5
CVE-2024-56089
HIGH
Technitium <13.2.2 - SSRF
CVSS 7.5
CVE-2025-59371
ASUS Router Firmware - Auth Bypass
CVE-2025-13470
HIGH
RNP 0.18.0 - Confidentiality Compromise
CVSS 7.5
CVE-2025-12787
MEDIUM
Hydra Booking - Appointment Scheduling & Booking Calendar <1.1.27 -...
CVSS 5.3
CVE-2025-6515
MEDIUM
oatpp-mcp - SSRF
CVSS 6.8
CVE-2025-10745
MEDIUM
Banhammer <3.4.8 - Auth Bypass
CVSS 5.3
CVE-2025-10671
LOW
youth-is-as-pale-as-poetry e-learning 1.0 - Info Disclosure
CVSS 3.7
Details
Vulnerabilities
355
Exploit Likelihood
High