Falhas do tipo CWE-330
148 resultadosCVE-2023-31147MEDIUMInsufficient randomness in generation of DNS query IDs in c-aresEPSS 0.9%CVE-2022-43636HIGHThis vulnerability allows network-adjacent attackers to bypass authentication on affected installations of TP-Link TL-WR940N 6_211111 3.20.1EPSS 0.9%CVE-2022-26851CRITICALDell PowerScale OneFS, 8.2.2-9.3.x, contains a predictable file name from observable state vulnerability. An unprivileged network attacker cEPSS 0.9%CVE-2022-31034HIGHInsecure entropy in argo-cdEPSS 0.9%CVE-2024-1631CRITICALagent-js: Insecure Key Generation in `Ed25519KeyIdentity.generate`EPSS 0.9%CVE-2024-4185HIGHCustomer Email Verification for WooCommerce <= 2.7.4 - Email Verification and Authentication Bypass due to Insufficient RandomnessEPSS 0.9%CVE-2023-41879HIGHMagento LTS's guest order "protect code" can be brute-forced too easilyEPSS 0.8%CVE-2022-37400—Apache OpenOffice Static Initialization Vector Allows to Recover Passwords for Web Connections Without Knowing the Master PasswordEPSS 0.8%CVE-2024-7659MEDIUMprojectsend Password Reset Token functions.php generate_random_string random valuesEPSS 0.8%CVE-2023-30797HIGHInsecure Random Generation in Netflix LemurEPSS 0.8%CVE-2021-27393—A vulnerability has been identified in Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2013.08), Nucleus Source Code (VerEPSS 0.8%CVE-2021-4248MEDIUMkapetan dns Request.cs entropyEPSS 0.8%CVE-2025-22150MEDIUMUndici Uses Insufficiently Random ValuesEPSS 0.7%CVE-2022-42787HIGHWiesemann & Theis: Small number space for allocating session id in Com-Server familyEPSS 0.7%CVE-2023-26855HIGHThe hashing algorithm of ChurchCRM v4.5.3 utilizes a non-random salt value which allows attackers to use precomputed hash tables or dictionaEPSS 0.7%CVE-2023-2418LOWKonga Login API random valuesEPSS 0.7%CVE-2025-59371HIGHAn authentication bypass vulnerability has been identified in the IFTTT integration feature. A remote, authenticated attacker could leverageEPSS 0.7%CVE-2023-3247LOWMissing error check and insufficient random bytes in HTTP Digest authentication for SOAPEPSS 0.7%CVE-2023-6799MEDIUMWP Reset <= 2.0 - Sensitive Information Exposure due to Insufficient RandomnessEPSS 0.7%CVE-2023-22746HIGHCKAN is vulnerable to session secret shared across instances using Docker imagesEPSS 0.7%