Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-330

CWE-330

High likelihood

Use of Insufficiently Random Values

Parent: CWE-693 - Protection Mechanism Failure

The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

375 vulnerabilities with CWE-330

CVE-2022-28355 HIGH

Scala.js < 1.10.0 - Use of Insufficiently Random Values in randomUUID

CVE-2022-26320 CRITICAL

Rambus SafeZone Basic Crypto Module <10.4.0 - Info Disclosure

CVE-2022-26317 MEDIUM

Mendix Applications <7.23.29 - Info Disclosure

CVE-2022-22700 MEDIUM

CyberArk Identity <= 22.1 - Info Disclosure

CVE-2022-22922 CRITICAL

TP-Link TL-WA850RE <6_200923 - Privilege Escalation

CVE-2022-23408 CRITICAL

wolfSSL 5.0.0-5.1.0 - Use of Insufficiently Random Values in AES-CBC and DES3 Connections

CVE-2021-26407 MEDIUM

AMD RomePI Firmware < 1.0.0.a - Information Disclosure via IV Collision

CVE-2021-4277 LOW

utils_project/utils < 2021-05-14 - Predictable Resource Location via Filename Handler

CVE-2021-4248 MEDIUM

Kapetan DNS <7.0.0 - Insufficient Entropy

CVE-2021-4241 LOW

phpservermon < 3.6.0 - Insufficient Entropy in User Login Token Generation

CVE-2021-4240 LOW

phpservermon - Predictable Algorithm

CVE-2021-23451 MEDIUM

otp-generator <3.0.0 - Info Disclosure

CVE-2021-41994 MEDIUM

PingID < 1.19 - Offline MFA Bypass via RSA Misconfiguration

CVE-2021-41993 MEDIUM

PingID Android <1.19 - Info Disclosure

CVE-2021-40422 CRITICAL

Swift Sensors Gateway SG3-1010 - RCE

CVE-2021-46010 HIGH

Totolink A3100R V5.9c.4577 - Info Disclosure

CVE-2021-36166 CRITICAL

FortiMail < 7.0.1 - Authentication Token Brute-Force via System Property Observation

CVE-2021-20322 HIGH

Linux Kernel < 5.14.21 - UDP Port Scan via ICMP Error Message Processing

CVE-2021-26726 HIGH

Valmet DNA 2012-2021 - Remote Code Execution via TCP Port 1517

CVE-2021-36294 CRITICAL

Dell VNX2 OE for File <8.1.21.266 - Auth Bypass

CVE-2021-45458 HIGH

Apache Kylin <2.6.6, <3.1.2 - Info Disclosure

CVE-2021-24998 HIGH

Simple JWT Login WP <3.3.0 - Info Disclosure

CVE-2021-45488 HIGH

NetBSD < 9.2 - Information Leak via TCP ISN Generation Algorithm

CVE-2021-45487 HIGH

NetBSD < 9.2 - Use of Insufficiently Random Values in IPv4 ID Generation

CVE-2021-44151 HIGH

Reprise License Manager 14.2-<15.1 - Session Hijacking via Weak Session Cookie

Previous Page 7 of 15 Next

Details

Vulnerabilities 375

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy