CWE-327: Use of a Broken or Risky Cryptographic Algorithm — known CVE vulnerabilities
CVEs classified under CWE-327 (Use of a Broken or Risky Cryptographic Algorithm), ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2026-50086 — CVSS 10.0 (critical): The Aqara IAM/SSO gateway (gw-builder.aqara.com) exposes bidirectional AES round-trups against the platform's signing key without…
CVE-2026-21718 — CVSS 10.0 (critical): An authentication bypass vulnerability exists in Copeland XWEB Pro version 1.12.1 and prior, enabling any attackers to bypass the…
CVE-2025-54426: Polkadot Frontier is an Ethereum and EVM compatibility layer for Polkadot and Substrate. In versions prior to commit 36f70d1, the…
CVE-2024-51478 — CVSS 9.9 (critical): YesWiki is a wiki system written in PHP. Prior to 4.4.5, the use of a weak cryptographic algorithm and a hard-coded salt to hash the…
CVE-2026-28252 — CVSS 9.8 (critical): A Use of a Broken or Risky Cryptographic Algorithm vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an…
CVE-2025-13476 — CVSS 9.8 (critical): Rakuten Viber Cloak mode in Android v25.7.2.0g and Windows v25.6.0.0–v25.8.1.0 uses a static and predictable TLS ClientHello fingerprint…
CVE-2025-69929 — CVSS 9.8 (critical): An issue in N3uron Web User Interface v.1.21.7-240207.1047 allows a remote attacker to escalate privileges via the password hashing on the…
CVE-2026-22585 — CVSS 9.8 (critical): Use of a Broken or Risky Cryptographic Algorithm vulnerability in Salesforce Marketing Cloud Engagement (CloudPages, Forward to a Friend…
CVE-2022-3365 — CVSS 9.8 (critical): Due to reliance on a trivial substitution cipher, sent in cleartext, and the reliance on a default password when the user does not set a…
CVE-2024-32911 — CVSS 9.8 (critical): There is a possible escalation of privilege due to improperly used crypto. This could lead to remote escalation of privilege with no…
CVE-2024-31510 — CVSS 9.8 (critical): An issue in Open Quantum Safe liboqs v.10.0 allows a remote attacker to escalate privileges via the crypto_sign_signature parameter in the…
CVE-2023-34039 — CVSS 9.8 (critical): Aria Operations for Networks contains an Authentication Bypass vulnerability due to a lack of unique cryptographic key generation. A…
CVE-2023-34130 — CVSS 9.8 (critical): SonicWall GMS and Analytics use outdated Tiny Encryption Algorithm (TEA) with a hardcoded key to encrypt sensitive data. This issue affects…
CVE-2022-36937 — CVSS 9.8 (critical): HHVM 4.172.0 and all prior versions use TLS 1.0 for secure connections when handling tls:// URLs in the stream extension. TLS1.0 has…
CVE-2022-30273 — CVSS 9.8 (critical): The Motorola MDLC protocol through 2022-05-02 mishandles message integrity. It supports three security modes: Plain, Legacy Encryption, and…
CVE-2021-45696 — CVSS 9.8 (critical): An issue was discovered in the sha2 crate 0.9.7 before 0.9.8 for Rust. Hashes of long messages may be incorrect when the AVX2-accelerated…
CVE-2020-36363 — CVSS 9.8 (critical): Amazon AWS CloudFront TLSv1.2_2019 allows TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 and TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, which some…
CVE-2021-22738 — CVSS 9.8 (critical): Use of a Broken or Risky Cryptographic Algorithm vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior that could…
CVE-2020-14517 — CVSS 9.8 (critical): Protocol encryption can be easily broken for CodeMeter (All versions prior to 6.90 are affected, including Version 6.90 or newer only if…
CVE-2020-3681 — CVSS 9.8 (critical): Authenticated and encrypted payload MMEs can be forged and remotely sent to any HPAV2 system using a jailbreak key recoverable from code.
CVE-2019-13022 — CVSS 9.8 (critical): Bond JetSelect (all versions) has an issue in the Java class (ENCtool.jar) and corresponding password generation algorithm (used to set…
CVE-2020-10377 — CVSS 9.8 (critical): A weak encryption vulnerability in Mitel MiVoice Connect Client before 214.100.1214.0 could allow an unauthenticated attacker to gain…
CVE-2018-21058 — CVSS 9.8 (critical): An issue was discovered on Samsung mobile devices with N(7.0), O(8.0) (exynos7420 or Exynos 8890/8996 chipsets) software. Cache attacks can…
CVE-2019-9095 — CVSS 9.8 (critical): An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before…
CVE-2019-8237 — CVSS 9.8 (critical): Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and…
CVE-2019-16143 — CVSS 9.8 (critical): An issue was discovered in the blake2 crate before 0.8.1 for Rust. The BLAKE2b and BLAKE2s algorithms, when used with HMAC, produce…
CVE-2019-5723 — CVSS 9.8 (critical): An issue was discovered in portier vision 4.4.4.2 and 4.4.4.6. Passwords are stored using reversible encryption rather than as a hash…
CVE-2019-0187 — CVSS 9.8 (critical): Unauthenticated RCE is possible when JMeter is used in distributed mode (-r or -R command line options). Attacker can establish a RMI…
CVE-2015-9235 — CVSS 9.8 (critical): In jsonwebtoken node module before 4.2.2 it is possible for an attacker to bypass verification when a token digitally signed with an…
CVE-2017-17878 — CVSS 9.8 (critical): An issue was discovered in Valve Steam Link build 643. Root passwords longer than 8 characters are truncated because of the default use of…
CVE-2017-17717 — CVSS 9.8 (critical): Sonatype Nexus Repository Manager through 2.14.5 has weak password encryption with a hardcoded CMMDwoV value in the LDAP integration…
CVE-2012-4449 — CVSS 9.8 (critical): Apache Hadoop before 0.23.4, 1.x before 1.0.4, and 2.x before 2.0.2 generate token passwords using a 20-bit secret when Kerberos security…
CVE-2014-9969 — CVSS 9.8 (critical): In all Qualcomm products with Android releases from CAF using the Linux kernel, the GPS client may use an insecure cryptographic algorithm.
CVE-2017-9859 — CVSS 9.8 (critical): An issue was discovered in SMA Solar Technology products. The inverters make use of a weak hashing algorithm to encrypt the password for…
CVE-2017-9466 — CVSS 9.8 (critical): The executable httpd on the TP-Link WR841N V8 router before TL-WR841N(UN)_V8_170210 contained a design flaw in the use of DES for block…
CVE-2014-8687 — CVSS 9.8 (critical): Seagate Business NAS devices with firmware before 2015.00322 allow remote attackers to execute arbitrary code with root privileges by…
CVE-2017-4917 — CVSS 9.8 (critical): VMware vSphere Data Protection (VDP) 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server credentials using reversible encryption…
CVE-2016-6602 — CVSS 9.8 (critical): ZOHO WebNMS Framework 5.2 and 5.2 SP1 use a weak obfuscation algorithm to store passwords, which allows context-dependent attackers to…
CVE-2007-6013 — CVSS 9.8 (critical): Wordpress 1.5 through 2.3.1 uses cookie values based on the MD5 hash of a password MD5 hash, which allows attackers to bypass…
CVE-2026-8072: Insecure generation of credentials in the local SAT (Technical Support) access functionality of the Ingecon Sun EMS Board. The…
CVE-2026-44699: LibJWT is a C JSON Web Token Library. From 3.0.0 to 3.3.2, libjwt accepts an RSA JWK that does not contain an alg parameter as the…
CVE-2026-34950 — CVSS 9.1 (critical): fast-jwt provides fast JSON Web Token (JWT) implementation. In 6.1.0 and earlier, the publicKeyPemMatcher regex in fast-jwt/src/crypto.js…
CVE-2026-27804 — CVSS 9.1 (critical): Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.3 and…
CVE-2026-26219 — CVSS 9.1 (critical): newbee-mall stores and verifies user passwords using an unsalted MD5 hashing algorithm. The implementation does not incorporate per-user…
CVE-2026-24785 — CVSS 9.1 (critical): Clatter is a no_std compatible, pure Rust implementation of the Noise protocol framework with post-quantum support. Versiosn prior to2.2.0…
CVE-2025-65849 — CVSS 9.1 (critical): A cryptanalytic break in Altcha Proof-of-Work obfuscation mode version 0.8.0 and later allows for remote visitors to recover the…
CVE-2025-3200 — CVSS 9.1 (critical): An unauthenticated remote attacker could exploit the used, insecure TLS 1.0 and TLS 1.1 protocols to intercept and manipulate encrypted…
CVE-2024-53441 — CVSS 9.1 (critical): An issue in the index.js decryptCookie function of cookie-encrypter v1.0.1 allows attackers to execute a bit flipping attack.
CVE-2024-41270 — CVSS 9.1 (critical): An issue discovered in the RunHTTPServer function in Gorush v1.18.4 allows attackers to intercept and manipulate data due to use of…