Falhas do tipo CWE-330
148 resultadosCVE-2025-6515MEDIUMReuse of session IDs in oatpp-mcp leads to session hijacking and prompt hijacking by remote attackersEPSS 0.3%CVE-2025-10745MEDIUMBanhammer – Monitor Site Traffic, Block Bad Users and Bots <= 3.4.8 - Unauthenticated Protection Mechanism BypassEPSS 0.3%CVE-2023-1385HIGHImproper JPAKE implementation allows offline PIN brute-forcing due to the initialization of random values to a known value, which leads to uEPSS 0.3%CVE-2025-43866LOWVantage6 Server JWT secret not cryptographically secureEPSS 0.3%CVE-2023-20185HIGHA vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow aEPSS 0.3%CVE-2024-50684MEDIUMSunGrow iSolarCloud Android app V2.1.6.20241017 and prior uses an insecure AES key to encrypt client data (insufficient entropy). This may aEPSS 0.3%CVE-2026-27515CRITICALBinardat 10G08-0800GSM Network Switch Predictable Session IdentifiersEPSS 0.3%CVE-2025-49198LOWPoor quality of randomness in authorization tokensEPSS 0.3%CVE-2024-5868MEDIUMWooCommerce - Social Login <= 2.6.2 - Email Verification due to Insufficient RandomnessEPSS 0.3%CVE-2022-31008MEDIUMPredictable credential obfuscation seed value used in rabbitmq-serverEPSS 0.3%CVE-2024-47187HIGHSuricata datasets: missing hashtable random seed leads to potential DoSEPSS 0.3%CVE-2026-33710HIGHChamilo LMS has Weak REST API Key Generation (Predictable)EPSS 0.3%CVE-2024-47188HIGHSuricata http/byte-ranges: missing hashtable random seed leads to potential DoSEPSS 0.3%CVE-2026-44054MEDIUMPredictable afpd session tokenEPSS 0.3%CVE-2025-1953LOWvLLM AIBrix Prefix Caching hash.go random valuesEPSS 0.3%CVE-2025-13470HIGHRNP 0.18.0 Vulnerable PKESK session keysEPSS 0.3%CVE-2024-56089HIGHAn issue in Technitium through v13.2.2 enables attackers to conduct a DNS cache poisoning attack and inject fake responses by reviving the bEPSS 0.3%CVE-2026-42155CRITICALMagento LTS: Weak API Session ID — Predictable MD5 of Time-Derived InputsEPSS 0.3%CVE-2026-41505HIGHRELATE: Predictable Token Generation in auth.py and exam.pyEPSS 0.3%CVE-2024-48928LOWPiwigo's secret key can be brute forcedEPSS 0.3%