CWE-330: Use of Insufficiently Random Values — known CVE vulnerabilities
CVEs classified under CWE-330 (Use of Insufficiently Random Values), ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2023-22601 — CVSS 10.0 (critical): InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-S-V2.3.0.r5542, contain…
CVE-2026-25072 — CVSS 9.8 (critical): XikeStor SKS8310-8X Network Switch firmware versions 1.04.B07 and prior contain a predictable session identifier vulnerability in the…
CVE-2026-27755 — CVSS 9.8 (critical): SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 contain a weak session identifier generation vulnerability that allows attackers…
CVE-2026-27637 — CVSS 9.8 (critical): FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.206, FreeScout's `TokenAuth`…
CVE-2025-64097 — CVSS 9.8 (critical): NervesHub is a web service that allows users to manage over-the-air (OTA) firmware updates of devices in the field. A vulnerability present…
CVE-2025-4607 — CVSS 9.8 (critical): The PSW Front-end Login & Registration plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including…
CVE-2023-39979 — CVSS 9.8 (critical): There is a vulnerability in MXsecurity versions prior to 1.0.1 that can be exploited to bypass authentication. A remote attacker might…
CVE-2023-4344 — CVSS 9.8 (critical): Broadcom RAID Controller web interface is vulnerable to insufficient randomness due to improper use of ssl.rnd to setup CIM connection
CVE-2023-2884 — CVSS 9.8 (critical): Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG), Use of Insufficiently Random Values vulnerability in CBOT Chatbot…
CVE-2022-46353 — CVSS 9.8 (critical): A vulnerability has been identified in SCALANCE X204RNA (HSR) (All versions < V3.2.7), SCALANCE X204RNA (PRP) (All versions < V3.2.7)…
CVE-2022-44938 — CVSS 9.8 (critical): Weak reset token generation in SeedDMS v6.0.20 and v5.1.7 allows attackers to execute a full account takeover via a brute force attack.
CVE-2022-36536 — CVSS 9.8 (critical): An issue in the component post_applogin.php of Super Flexible Software GmbH & Co. KG Syncovery 9 for Linux v9.47x and below allows…
CVE-2022-25752 — CVSS 9.8 (critical): A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE…
CVE-2021-36166 — CVSS 9.8 (critical): An improper authentication vulnerability in FortiMail before 7.0.1 may allow a remote attacker to efficiently guess one administrative…
CVE-2022-22922 — CVSS 9.8 (critical): TP-Link TL-WA850RE Wi-Fi Range Extender before v6_200923 was discovered to use highly predictable and easily detectable session keys…
CVE-2021-36294 — CVSS 9.8 (critical): Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain an authentication bypass vulnerability. A remote unauthenticated attacker…
CVE-2021-41694 — CVSS 9.8 (critical): An Incorrect Access Control vulnerability exists in Premiumdatingscript 4.2.7.7 via the password change procedure in requests\user.php.
CVE-2021-28024 — CVSS 9.8 (critical): Unauthorized system access in the login form in ServiceTonic Helpdesk software version < 9.0.35937 allows attacker to login without using a…
CVE-2021-34646 — CVSS 9.8 (critical): Versions up to, and including, 5.4.3, of the Booster for WooCommerce WordPress plugin are vulnerable to authentication bypass via the…
CVE-2021-27200 — CVSS 9.8 (critical): In WoWonder 3.0.4, remote attackers can take over any account due to the weak cryptographic algorithm in recover.php. The code parameter is…
CVE-2020-35926 — CVSS 9.8 (critical): An issue was discovered in the nanorand crate before 0.5.1 for Rust. It caused any random number generator (even ChaCha) to return all…
CVE-2020-7548 — CVSS 9.8 (critical): A CWE-330 - Use of Insufficiently Random Values vulnerability exists in Smartlink, PowerTag, and Wiser Series Gateways (see security…
CVE-2020-27743 — CVSS 9.8 (critical): libtac in pam_tacplus through 1.5.1 lacks a check for a failure of RAND_bytes()/RAND_pseudo_bytes(). This could lead to use of a…
CVE-2020-9502 — CVSS 9.8 (critical): Some Dahua products with Build time before December 2019 have Session ID predictable vulnerabilities. During normal user access, an…
CVE-2019-2317 — CVSS 9.8 (critical): The secret key used to make the Initial Sequence Number in the TCP SYN packet could be brute forced and therefore can be predicted in…
CVE-2019-16674 — CVSS 9.8 (critical): An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build…
CVE-2014-6311 — CVSS 9.8 (critical): generate_doygen.pl in ace before 6.2.7+dfsg-2 creates predictable file names in the /tmp directory which allows attackers to gain elevated…
CVE-2019-2294 — CVSS 9.8 (critical): Usage of hard-coded magic number for calculating heap guard bytes can allow users to corrupt heap blocks without heap algorithm knowledge…
CVE-2019-15130 — CVSS 9.8 (critical): The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated attacker to upload any file type to a…
CVE-2019-7667 — CVSS 9.8 (critical): Prima Systems FlexAir, Versions 2.3.38 and prior. The application generates database backup files with a predictable name, and an attacker…
CVE-2019-9863 — CVSS 9.8 (critical): Due to the use of an insecure algorithm for rolling codes in the ABUS Secvest wireless alarm system FUAA50000 3.01.01 and its remote…
CVE-2019-5420 — CVSS 9.8 (critical): A remote code execution vulnerability in development mode Rails <5.2.2.1, <6.0.0.beta3 can allow an attacker to guess the automatically…
CVE-2019-0729 — CVSS 9.8 (critical): An Elevation of Privilege vulnerability exists in the way Azure IoT Java SDK generates symmetric keys for encryption, allowing an attacker…
CVE-2018-18602 — CVSS 9.8 (critical): The Cloud API on Guardzilla smart cameras allows user enumeration, with resultant arbitrary camera access and monitoring.
CVE-2018-18531 — CVSS 9.8 (critical): text/impl/DefaultTextCreator.java, text/impl/ChineseTextProducer.java, and text/impl/FiveLetterFirstNameTextCreator.java in kaptcha 2.3.2…
CVE-2018-18375 — CVSS 9.8 (critical): goform/getProfileList in Orange AirBox Y858_FL_01.16_04 allows attackers to extract APN data (name, number, username, and password) via the…
CVE-2018-17888 — CVSS 9.8 (critical): NUUO CMS all versions 3.1 and prior, The application uses a session identification mechanism that could allow attackers to obtain the…
CVE-2018-16239 — CVSS 9.8 (critical): An issue was discovered in damiCMS V6.0.1. It relies on the PHP time() function for cookies, which makes it possible to determine the…
CVE-2017-16924 — CVSS 9.8 (critical): Remote Information Disclosure and Escalation of Privileges in ManageEngine Desktop Central MSP 10.0.137 allows attackers to download…
CVE-2017-7902 — CVSS 9.8 (critical): A "Reusing a Nonce, Key Pair in Encryption" issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic…
CVE-2016-5100 — CVSS 9.8 (critical): Froxlor before 0.9.35 uses the PHP rand function for random number generation, which makes it easier for remote attackers to guess the…
CVE-2008-3612 — CVSS 9.8 (critical): The Networking subsystem in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.0.2, uses predictable TCP initial sequence…
CVE-2008-2433 — CVSS 9.8 (critical): The web management console in Trend Micro OfficeScan 7.0 through 8.0, Worry-Free Business Security 5.0, and Client/Server/Messaging Suite…
CVE-2026-50208 — CVSS 9.4 (critical): High-risk TrustAllCerts routines disable standard TLS certificate validation. Combined with hard-coded DES symmetric encryption keys, a…
CVE-2025-7783: Use of Insufficiently Random Values vulnerability in form-data allows HTTP Parameter Pollution (HPP). This vulnerability is associated with…