CWE-329
Generation of Predictable IV with CBC Mode
The product generates and uses a predictable initialization Vector (IV) with Cipher Block Chaining (CBC) Mode, which causes algorithms to be susceptible to dictionary attacks when they are encrypted under the same key.
Official CWE-329 definition at MITREImpactr finds and proves weaknesses like CWE-329 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist