Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-330

CWE-330

High likelihood

Use of Insufficiently Random Values

Parent: CWE-693 - Protection Mechanism Failure

The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

375 vulnerabilities with CWE-330

CVE-2025-15574 MEDIUM

Solax Cloud MQTT - Authentication Bypass

CVE-2025-64097 CRITICAL

NervesHub 1.0.0-2.2.9 - Predictable API Token Generation via Insufficiently Random Values

CVE-2025-68704 HIGH

Jervis < 2.2 - Use of Insufficiently Random Values

CVE-2025-11723 MEDIUM

Simply Schedule Appointments Booking Plugin <1.6.9.5 - Info Disclosure

CVE-2025-11707 MEDIUM

Login Lockdown & Protection <2.14 - Auth Bypass

CVE-2025-13955 CRITICAL

EZCast Pro II <1.17478.146 - Info Disclosure

CVE-2025-66511 MEDIUM

Nextcloud Calendar <6.0.3 - Info Disclosure

CVE-2025-13353 MEDIUM

gokey < 0.2.0 - Use of Insufficiently Random Values via Seed File Entropy Reduction

CVE-2025-59371 HIGH

ASUS Router - Authentication Bypass via IFTTT Integration

CVE-2025-13470 HIGH

RNP 0.18.0 - Confidentiality Compromise

CVE-2025-12787 MEDIUM

Hydra Booking - Appointment Scheduling & Booking Calendar <1.1.27 -...

CVE-2025-6515 MEDIUM

oatpp-mcp SSE Endpoint - Predictable Session ID Hijacking

CVE-2025-10745 MEDIUM

Banhammer <= 3.4.8 - Unauthenticated Blocking Bypass via Predictable Secret Key

CVE-2025-10671 LOW

youth-is-as-pale-as-poetry e-learning 1.0 - Info Disclosure

CVE-2025-7783 CRITICAL

form-data <2.5.4, 3.0.0-3.0.3, 4.0.0-4.0.3 - HPP

CVE-2025-6931 LOW

D-Link DCS-6517/7517 <2.02.0 - Insufficient Entropy

CVE-2025-43866 HIGH

vantage6 < 4.11.0 - Use of Insufficiently Random Values for JWT Secret Key

CVE-2025-49198 LOW

SICK Media Server - Use of Insufficiently Random Values in Authorization Tokens

CVE-2025-4607 CRITICAL

PSW Front-end Login & Registration <1.12 - Privilege Escalation

CVE-2025-5136 LOW

Tmall Demo < 2025-05-05 - Insufficiently Random Values in Payment Identifier Handler

CVE-2025-1953 LOW

vLLM AIBrix <0.2.0 - Insufficiently Random Values

CVE-2025-22150 MEDIUM

Undici <5.28.5,6.21.1,7.2.3 - Info Disclosure

CVE-2025-0218 MEDIUM

pgAgent < 4.2.3 - Predictable Temporary Directory Name Generation

CVE-2024-51346 HIGH

Eufy Homebase 2 3.3.4.1h - Info Disclosure

CVE-2024-48928 HIGH

Piwigo 14.x - Weak Secret Key Vulnerability

Previous Page 2 of 15 Next

Details

Vulnerabilities 375

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy