CWE-757
Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')
A protocol or its implementation supports interaction between multiple actors and allows those actors to negotiate which algorithm should be used as a protection mechanism such as encryption or authentication, but it does not select the strongest algorithm that is available to both parties.
Official CWE-757 definition at MITREImpactr finds and proves weaknesses like CWE-757 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist