Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-338

CWE-338

Medium likelihood

Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)

Parent: CWE-330 - Use of Insufficiently Random Values

The product uses a Pseudo-Random Number Generator (PRNG) in a security context, but the PRNG's algorithm is not cryptographically strong.

184 vulnerabilities with CWE-338

CVE-2013-20003 HIGH

Silicon Labs Z-Wave Firmware - Use of a Broken or Risky Cryptographic Algorithm via Shared Network Key

CVE-2012-6124 MEDIUM

Chicken < 4.8.0 - Cryptographically Weak PRNG via Casting Error

CVE-2011-4574 CRITICAL

PolarSSL < 1.1.0 - Use of Cryptographically Weak PRNG via HAVEGE Algorithm

CVE-2009-3278 MEDIUM

QNAP TS-239 Pro/TS-639 Pro <3.1.1 - Info Disclosure

CVE-2009-3238 MEDIUM

Linux kernel <2.6.30 - Info Disclosure

CVE-2009-2367 CRITICAL

Iomega StorCenter Pro - Info Disclosure

CVE-2008-3280 MEDIUM

OpenID - Use of Cryptographically Weak Pseudo-Random Number Generator

CVE-2008-0166 HIGH

OpenSSL <0.9.8g-9 - Info Disclosure

CVE-2002-20002 MEDIUM

Net::EasyTCP <0.15 - Info Disclosure

Previous Page 8 of 8

Details

Vulnerabilities 184

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy