Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-330

CWE-330

High likelihood

Use of Insufficiently Random Values

Parent: CWE-693 - Protection Mechanism Failure

The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

375 vulnerabilities with CWE-330

CVE-2024-56089 HIGH

Technitium DNS Server < 13.2.2 - DNS Cache Poisoning via Birthday Attack

CVE-2024-50684 MEDIUM

SunGrow iSolarCloud <V2.1.6.20241017 - Info Disclosure

CVE-2024-10604 MEDIUM

Fuchsia < f16 - Use of Insufficiently Random Values in Network Protocol Header Fields

CVE-2024-12432 HIGH

WPC Shop as a Customer for WooCommerce <1.2.8 - Privilege Escalation

CVE-2024-52615 MEDIUM

Red Hat Enterprise Linux 10 - Use of Insufficiently Random Values in Avahi-daemon DNS Query Port Selection

CVE-2024-10082 HIGH

CodeChecker <6.24.1 - Privilege Escalation

CVE-2024-20331 MEDIUM

Cisco Adaptive Security Appliance Software - Unauthenticated Denial of Service via Session Authentication Handle

CVE-2024-47188 HIGH

Suricata < 7.0.7 - Denial of Service via Predictable Hash Table Behavior

CVE-2024-47187 HIGH

Suricata < 7.0.7 - Predictable Hash Table Behavior via Uninitialized Random Seed

CVE-2024-7558 HIGH

Juju < 2.9.51 - Unauthenticated Predictable Authentication Secret via JUJU_CONTEXT_ID

CVE-2024-41708 HIGH

AdaCore ada_web_services <20.0 - Privilege Escalation

CVE-2024-6348 HIGH

Nissan Altima 2022 - Info Disclosure

CVE-2024-42475 MEDIUM

CORDEA oauth < 0.11 - Insufficient Entropy in OAuth State Parameter

CVE-2024-7659 LOW

projectsend <r1720 - Info Disclosure

CVE-2024-42165 MEDIUM

FIWARE Keyrock <= 8.4 - Info Disclosure

CVE-2024-42164 MEDIUM

FIWARE Keyrock <= 8.4 - Info Disclosure

CVE-2024-21460 HIGH

Qualcomm FastConnect 6900 Firmware - Information Disclosure via ASLR Relocation

CVE-2024-25943 HIGH

iDRAC9 <7.00.00.172-7.10.50.00 - RCE

CVE-2024-5868 MEDIUM

WooCommerce - Social Login <2.6.2 - Auth Bypass

CVE-2024-35292 HIGH

SIMATIC S7-200 SMART CPU - Info Disclosure

CVE-2024-5149 MEDIUM

BuddyForms <= 2.8.9 - Unauthenticated Email Verification Bypass via Insufficiently Random Activation Code

CVE-2024-36389 CRITICAL

MileSight DeviceHub - Authentication Bypass via Insufficiently Random Values

CVE-2024-4185 HIGH

Customer Email Verification for WooCommerce <2.7.4 - Auth Bypass

CVE-2024-28013 MEDIUM

NEC Corporation Various Products - Insufficiently Random Values

CVE-2024-1631 CRITICAL

Ed25519KeyIdentity - Insecure Seed Generation

Previous Page 3 of 15 Next

Details

Vulnerabilities 375

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy