CVEs classified under CWE-334, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2025-3895: Token used for resetting passwords in MegaBIP software are generated using a small space of random values combined with a queryable value…
CVE-2020-7566 — CVSS 7.3 (high): A CWE-334: Small Space of Random Values vulnerability exists in Modicon M221 (all references, all versions) that could allow the attacker…
CVE-2023-6951 — CVSS 6.6 (medium): A Use of Weak Credentials vulnerability affecting the Wi-Fi network generated by a set of DJI drones could allow a remote attacker to…
CVE-2024-54017 — CVSS 5.3 (medium): A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V11.0), SIPROTEC 5 6MD85 (CP200) (All versions), SIPROTEC 5…
CVE-2024-52616 — CVSS 5.3 (medium): A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup, incrementing them…