CWE-328
Use of Weak Hash
The product uses an algorithm that produces a digest (output value) that does not meet security expectations for a hash function that allows an adversary to reasonably determine the original input (preimage attack), find another input that can produce the same hash (2nd preimage attack), or find multiple inputs that e…
Official CWE-328 definition at MITREImpactr finds and proves weaknesses like CWE-328 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist