Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-330

CWE-330

High likelihood

Use of Insufficiently Random Values

Parent: CWE-693 - Protection Mechanism Failure

The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

375 vulnerabilities with CWE-330

CVE-2017-0897 HIGH

ExpressionEngine <2.11.8, <3.5.5 - RCE

CVE-2016-4980 LOW

xquest <2016-06-13 - Info Disclosure

CVE-2016-5100 CRITICAL

Froxlor < 0.9.35 - Predictable Password Reset Token via Weak PHP rand Function

CVE-2016-10180 HIGH

D-Link DWR-932B Firmware - Predictable WPS PIN Generation via srand(time(0)) Seeding

CVE-2016-5085 HIGH

Johnson & Johnson Animas OneTouch Ping - Info Disclosure

CVE-2015-9019 MEDIUM

libxslt < 1.1.29 - Use of Insufficiently Random Values in EXSLT math.random

Wind River VxWorks <7 - Info Disclosure

CVE-2014-6311 CRITICAL

generate_doygen.pl <6.2.7+dfsg-2 - Privilege Escalation

CVE-2013-0294 MEDIUM

pyrad < 2.1 - Use of Insufficiently Random Values in RADIUS Authenticator and Password Hash Generation

CVE-2013-4102 CRITICAL

Cryptocat <2.0.22 - Info Disclosure

CVE-2013-7463 HIGH

aescrypt gem 1.0.0 - Info Disclosure

Siemens RuggedCom ROS <3.12.2 - SSRF

CVE-2013-4734 HIGH

Digital Alert Systems DASDEC <2.0-2 - Info Disclosure

CVE-2012-1562 HIGH

Joomla! <2.5.3 - Privilege Escalation

CVE-2010-3666 MEDIUM

TYPO3 <4.1.14, <4.2.13, <4.3.4, <4.4.1 - Info Disclosure

CVE-2009-2158 HIGH

TorrentTrader Classic 1.09 - Info Disclosure

CVE-2009-0255 HIGH

TYPO3 4.0.0-4.0.9 4.1.0-4.1.7 4.2.0-4.2.3 - Use of Insufficiently Random Values in System Extension Install Tool

CVE-2008-5162 HIGH

FreeBSD 6.3-7.1 - Use of Insufficiently Random Values in arc4random Function

CVE-2008-4929 HIGH

MyBB 1.4.2 - Insufficiently Random Filename Generation for Uploaded Attachments

CVE-2008-4905 HIGH

Typo < 5.1.3 - Use of Hard-Coded Salt for Password Hashes

CVE-2008-3612 CRITICAL

Apple iPod touch <2.0.2 & iPhone <2.0.2 - Info Disclosure

CVE-2008-2433 CRITICAL

Trend Micro OfficeScan <8.0 - Info Disclosure

CVE-2008-2020 HIGH

CAPTCHA implementation - Info Disclosure

CVE-2008-0087 HIGH

Microsoft Windows - Info Disclosure

CVE-2008-0141 HIGH

WebPortal CMS 0.6-beta - Info Disclosure

Previous Page 15 of 15

Details

Vulnerabilities 375

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy