CWE-327— Use of a Broken or Risky Cryptographic Algorithm
The product uses a broken or risky cryptographic algorithm or protocol.— MITRE CWE catalog
688 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-327page 6 of 14
- CVE-2021-22212MEDIUMCVSS 4.0EG 7.42021-06-08
ntpkeygen can generate keys that ntpd fails to parse. NTPsec 1.2.0 allows ntpkeygen to generate keys with '#' characters. ntpd then either pads, shortens the key, or fails to load these keys entirely, depending on the key type and the plac…
- CVE-2021-22309HIGHCVSS 7.5EG 7.52021-03-22
There is insecure algorithm vulnerability in Huawei products. A module uses less random input in a secure mechanism. Attackers can exploit this vulnerability by brute forcing to obtain sensitive message. This can lead to information leak. …
- CVE-2021-22356MEDIUMCVSS 5.9EG 5.92021-11-23
There is a weak secure algorithm vulnerability in Huawei products. A weak secure algorithm is used in a module. Attackers can exploit this vulnerability by capturing and analyzing the messages between devices to obtain information. This ca…
- CVE-2021-22738CRITICALCVSS 9.8EG 9.82021-05-26
Use of a Broken or Risky Cryptographic Algorithm vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior that could cause unauthorized access when credentials are discovered after a brute force attack.
- CVE-2021-22948HIGHCVSS 7.1EG 7.12021-09-23
Vulnerability in the generation of session IDs in revive-adserver < 5.3.0, based on the cryptographically insecure uniqid() PHP function. Under some circumstances, an attacker could theoretically be able to brute force session IDs in order…
- CVE-2021-2351HIGHCVSS 8.3EG 7.52021-07-21
Vulnerability in the Advanced Networking Option component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Difficult to exploit vulnerability allows unauthenticated attacker with network acces…
- CVE-2021-23839LOWCVSS 3.7EG 3.72021-02-16
OpenSSL 1.0.2 supports SSLv2. If a client attempts to negotiate SSLv2 with a server that is configured to support both SSLv2 and more recent SSL and TLS versions then a check is made for a version rollback attack when unpadding an RSA sign…
- CVE-2021-23993MEDIUMCVSS 6.5EG 6.52021-06-24
An attacker may perform a DoS attack to prevent a user from sending encrypted email to a correspondent. If an attacker creates a crafted OpenPGP key with a subkey that has an invalid self signature, and the Thunderbird user imports the cra…
- CVE-2021-25761MEDIUMCVSS 5.3EG 5.32021-02-03
In JetBrains Ktor before 1.5.0, a birthday attack on SessionStorage key was possible.
- CVE-2021-25763MEDIUMCVSS 5.3EG 5.32021-02-03
In JetBrains Ktor before 1.4.2, weak cipher suites were enabled by default.
- CVE-2021-26095HIGHCVSS 7.5EG 8.82021-07-20
The combination of various cryptographic issues in the session management of FortiMail 6.4.0 through 6.4.4 and 6.2.0 through 6.2.6, including the encryption construction of the session cookie, may allow a remote attacker already in possess…
- CVE-2021-26099MEDIUMCVSS 4.4EG 4.92021-07-12
Missing cryptographic steps in the Identity-Based Encryption service of FortiMail before 7.0.0 may allow an attacker who comes in possession of the encrypted master keys to compromise their confidentiality by observing a few invariant prop…
- CVE-2021-27211HIGHCVSS 7.5EG 7.52021-02-15
steghide 0.5.1 relies on a certain 32-bit seed value, which makes it easier for attackers to detect hidden data.
- CVE-2021-27457HIGHCVSS 7.5EG 7.52021-05-20
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected products utilize a weak encryption algorithm for storage of sensitive data, which may allow an attacker to more easily obtain cre…
- CVE-2021-27756HIGHCVSS 7.5EG 7.52022-03-04
"TLS-RSA cipher suites are not disabled in BigFix Compliance up to v2.0.5. If TLS 2.0 and secure ciphers are not enabled then an attacker can passively record traffic and later decrypt it."
- CVE-2021-27784MEDIUMCVSS 5.9EG 7.52022-10-31
The provided HCL Launch Container images contain non-unique HTTPS certificates and a database encryption key. The fix provides directions and tools to replace the non-unique keys and certificates. This does not affect the standard installe…
- CVE-2021-27795MEDIUMCVSS 6.4EG 6.42023-12-06
Brocade Fabric OS (FOS) hardware platforms running any version of Brocade Fabric OS software, which supports the license string format; contain cryptographic issues that could allow for the installation of forged or fraudulent license …
- CVE-2021-27913LOWCVSS 3.5EG 3.52021-08-30
The function mt_rand is used to generate session tokens, this function is cryptographically flawed due to its nature being one pseudorandomness, an attacker can take advantage of the cryptographically insecure nature of this function to en…
- CVE-2021-29694HIGHCVSS 7.5EG 7.52021-04-26
IBM Spectrum Protect Plus 10.1.0 through 10.1.7 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 200258.
- CVE-2021-29704HIGHCVSS 7.5EG 7.52021-08-23
IBM Security SOAR uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
- CVE-2021-29722HIGHCVSS 7.5EG 7.52021-08-30
IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 201095.
- CVE-2021-29723HIGHCVSS 7.5EG 7.52021-08-30
IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-ForceID: 201100.
- CVE-2021-29750HIGHCVSS 7.5EG 7.52021-09-15
IBM QRadar SIEM 7.3 and 7.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 201778.
- CVE-2021-29794HIGHCVSS 7.5EG 7.52021-07-12
IBM Tivoli Netcool/Impact 7.1.0.20 and 7.1.0.21 uses an insecure SSH server configuration which enables weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 203…
- CVE-2021-29894HIGHCVSS 7.5EG 7.52021-09-30
IBM Cloud Pak for Security (CP4S) 1.7.0.0, 1.7.1.0, 1.7.2.0, and 1.8.0.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 207320.
- CVE-2021-31352MEDIUMCVSS 5.3EG 5.32021-10-19
An Information Exposure vulnerability in Juniper Networks SRC Series devices configured for NETCONF over SSH permits the negotiation of weak ciphers, which could allow a remote attacker to obtain sensitive information. A remote attacker wi…
- CVE-2021-31556CRITICALCVSS 9.8EG 9.82021-08-12
An issue was discovered in the Oauth extension for MediaWiki through 1.35.2. MWOAuthConsumerSubmitControl.php does not ensure that the length of an RSA key will fit in a MySQL blob.
- CVE-2021-31562MEDIUMCVSS 6.5EG 6.52022-01-21
The SSL/TLS configuration of Fresenius Kabi Agilia Link + version 3.0 has serious deficiencies that may allow an attacker to compromise SSL/TLS sessions in different ways. An attacker may be able to eavesdrop on transferred data, manipulat…
- CVE-2021-31796HIGHCVSS 7.5EG 7.52021-09-02
An inadequate encryption vulnerability discovered in CyberArk Credential Provider before 12.1 may lead to Information Disclosure. An attacker may realistically have enough information that the number of possible keys (for a credential file…
- CVE-2021-32591MEDIUMCVSS 5.3EG 5.32021-12-08
A missing cryptographic steps vulnerability in the function that encrypts users' LDAP and RADIUS credentials in FortiSandbox before 4.0.1, FortiWeb before 6.3.12, FortiADC before 6.2.1, FortiMail 7.0.1 and earlier may allow an attacker in …
- CVE-2021-32593MEDIUMCVSS 6.5EG 6.52022-04-06
A use of a broken or risky cryptographic algorithm vulnerability [CWE-327] in the Dynamic Tunnel Protocol of FortiWAN before 4.5.9 may allow an unauthenticated remote attacker to decrypt and forge protocol communication messages.
- CVE-2021-33003MEDIUMCVSS 5.5EG 5.52021-08-30
Delta Electronics DIAEnergie Version 1.7.5 and prior may allow an attacker to retrieve passwords in cleartext due to a weak hashing algorithm.
- CVE-2021-33018HIGHCVSS 7.5EG 7.52022-04-01
The use of a broken or risky cryptographic algorithm in Philips Vue PACS versions 12.2.x.x and prior is an unnecessary risk that may result in the exposure of sensitive information.
- CVE-2021-33582HIGHCVSS 7.5EG 7.52021-09-01
Cyrus IMAP before 3.4.2 allows remote attackers to cause a denial of service (multiple-minute daemon hang) via input that is mishandled during hash-table interaction. Because there are many insertions into a single bucket, strcmp becomes s…
- CVE-2021-33846MEDIUMCVSS 5.9EG 5.92022-01-21
Fresenius Kabi Vigilant Software Suite (Mastermed Dashboard) version 2.0.1.3 issues authentication tokens to authenticated users that are signed with a symmetric encryption key. An attacker in possession of the key can issue valid JWTs and…
- CVE-2021-3446MEDIUMCVSS 5.5EG 5.52021-03-25
A flaw was found in libtpms in versions before 0.8.2. The commonly used integration of libtpms with OpenSSL contained a vulnerability related to the returned IV (initialization vector) when certain symmetric ciphers were used. Instead of r…
- CVE-2021-34687MEDIUMCVSS 5.3EG 5.32021-07-15
iDrive RemotePC before 7.6.48 on Windows allows information disclosure. A man in the middle can recover a system's Personal Key when a client attempts to make a LAN connection. The Personal Key is transmitted over the network while only be…
- CVE-2021-34688LOWCVSS 3.3EG 3.32021-07-15
iDrive RemotePC before 7.6.48 on Windows allows information disclosure. A locally authenticated attacker can read an encrypted version of the system's Personal Key in world-readable %PROGRAMDATA% log files. The encryption is done using a h…
- CVE-2021-36298HIGHCVSS 8.1EG 8.12021-10-01
Dell EMC InsightIQ, versions prior to 4.1.4, contain risky cryptographic algorithms in the SSH component. A remote unauthenticated attacker could potentially exploit this vulnerability leading to authentication bypass and remote takeover o…
- CVE-2021-36647MEDIUMCVSS 4.7EG 4.72023-01-17
Use of a Broken or Risky Cryptographic Algorithm in the function mbedtls_mpi_exp_mod() in lignum.c in Mbed TLS Mbed TLS all versions before 3.0.0, 2.27.0 or 2.16.11 allows attackers with access to precise enough timing and memory access in…
- CVE-2021-37546MEDIUMCVSS 5.3EG 5.32021-08-06
In JetBrains TeamCity before 2021.1, an insecure key generation mechanism for encrypted properties was used.
- CVE-2021-37587MEDIUMCVSS 6.5EG 6.52021-07-30
In Charm 0.43, any single user can decrypt DAC-MACS or MA-ABE-YJ14 data.
- CVE-2021-37588MEDIUMCVSS 5.9EG 5.92021-07-30
In Charm 0.43, any two users can collude to achieve the ability to decrypt YCT14 data.
- CVE-2021-37606MEDIUMCVSS 5.3EG 5.32021-07-30
Meow hash 0.5/calico does not sufficiently thwart key recovery by an attacker who can query whether there's a collision in the bottom bits of the hashes of two messages, as demonstrated by an attack against a long-running web service that …
- CVE-2021-38542MEDIUMCVSS 5.9EG 5.92022-01-04
Apache James prior to release 3.6.1 is vulnerable to a buffering attack relying on the use of the STARTTLS command. This can result in Man-in -the-middle command injection attacks, leading potentially to leakage of sensible information.
- CVE-2021-38921HIGHCVSS 7.5EG 7.52022-01-10
IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 210067.
- CVE-2021-38933MEDIUMCVSS 5.9EG 5.92023-07-19
IBM Sterling Connect:Direct for UNIX 1.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 210574.
- CVE-2021-39002HIGHCVSS 7.5EG 7.52021-12-09
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
- CVE-2021-39058HIGHCVSS 7.5EG 7.52021-12-13
IBM Spectrum Copy Data Management 2.2.13 and earlier uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 214617.
- CVE-2021-39076HIGHCVSS 7.5EG 7.52022-04-19
IBM Security Guardium 10.5 and 11.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt sensitive information. IBM X-Force ID: 215585.
Map vulnerabilities like CWE-327 to your infrastructure
EchelonGraph correlates every CVE — across CWE-327 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →