Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-330

CWE-330

High likelihood

Use of Insufficiently Random Values

Parent: CWE-693 - Protection Mechanism Failure

The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

375 vulnerabilities with CWE-330

CVE-2024-21495 MEDIUM

github.com/greenpau/caddy-security <1.0.42 - Info Disclosure

CVE-2024-0761 HIGH

WordPress File Manager <7.2.1 - Info Disclosure

CVE-2024-23688 MEDIUM

Consensys Discovery <0.4.5 - Info Disclosure

CVE-2023-6799 MEDIUM

WP Reset < 2.0 - Unauthenticated Sensitive Information Exposure via Insufficiently Random Snapshot Names

CVE-2023-46740 MEDIUM

CubeFS <3.3.1 - Privilege Escalation

CVE-2023-32831 MEDIUM

MediaTek Software Development Kit < 7.6.7.1 - Local Information Disclosure via WLAN Driver PIN Crack

CVE-2023-4462 LOW

Poly Trio and CCX Devices - Information Disclosure via Weak Random Values

CVE-2023-6376 MEDIUM

Henschen & Associates - Info Disclosure

CVE-2023-48056 HIGH

PyPinkSign v0.5.1 - Info Disclosure

CVE-2023-29332 HIGH

Microsoft Azure Kubernetes Service - Privilege Escalation

CVE-2023-41879 HIGH

OpenMage Magento < 19.5.1 - Unauthenticated Order Access via Weak Protect Code

CVE-2023-34353 HIGH

OAS Platform 18.00.0072 - Authentication Bypass via Network Traffic Sniffing

CVE-2023-39979 CRITICAL

MXsecurity < 1.1.0 - Authentication Bypass via Insufficient Random Values

CVE-2023-4344 CRITICAL

Broadcom RAID Controller - Info Disclosure

CVE-2023-24478 MEDIUM

Intel Quartus Prime Pro <22.4 - Info Disclosure

CVE-2023-3373 MEDIUM

Mitsubishi Electric GOT2000/GOT SIMPLE <01.49.000 - Session Hijack/DoS

CVE-2023-26451 HIGH

OAuth Authorization Service - Info Disclosure

CVE-2023-3247 LOW

PHP <8.0.29, <8.1.20, <8.2.7 - Info Disclosure

CVE-2023-3803 LOW

Chengdu Flash Flood Disaster Monitoring and Warning System 2.0 - In...

CVE-2023-20185 HIGH

Cisco NX-OS - Inadequate Encryption Strength in CloudSec Feature

CVE-2023-1898 CRITICAL

Atlas Copco Power Focus 6000 - Info Disclosure

CVE-2023-31147 MEDIUM

c-ares < 1.19.1 - Use of Insufficiently Random Values for DNS Query IDs

CVE-2023-31124 LOW

c-ares < 1.19.1 - Use of Insufficiently Random Values via rand() Fallback

CVE-2023-2884 CRITICAL

CBOT Chatbot <4.0.3.4-4.0.3.7 - Signature Spoofing

CVE-2023-1385 HIGH

Amazon Fire TV Stick <6.2.9.5 - Auth Bypass

Previous Page 4 of 15 Next

Details

Vulnerabilities 375

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy