VYPR

CWE-327

Use of a Broken or Risky Cryptographic Algorithm

ClassDraftLikelihood: High

Description

The product uses a broken or risky cryptographic algorithm or protocol.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-20 · CAPEC-459 · CAPEC-473 · CAPEC-475 · CAPEC-608 · CAPEC-614 · CAPEC-97

CVEs mapped to this weakness (257)

page 2 of 13
  • CVE-2015-9235CriMay 29, 2018
    risk 0.57cvss 9.8epss 0.09

    In jsonwebtoken node module before 4.2.2 it is possible for an attacker to bypass verification when a token digitally signed with an asymmetric key (RS/ES family) of algorithms but instead the attacker send a token digitally signed with a symmetric algorithm (HS* family).

  • CVE-2018-10084HigApr 13, 2018
    risk 0.57cvss 8.8epss 0.01

    CMS Made Simple (CMSMS) through 2.2.6 contains a privilege escalation vulnerability from ordinary user to admin user by arranging for the eff_uid value within $_COOKIE[$this->_loginkey] to equal 1, because an SHA-1 cryptographic protection mechanism can be bypassed.

  • CVE-2007-6013CriNov 19, 2007
    risk 0.57cvss 9.8epss 0.03

    Wordpress 1.5 through 2.3.1 uses cookie values based on the MD5 hash of a password MD5 hash, which allows attackers to bypass authentication by obtaining the MD5 hash from the user database, then generating the authentication cookie from that hash.

  • CVE-2025-9317HigNov 15, 2025
    risk 0.55cvss 8.4epss 0.00

    The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge users' app-native or Active Directory passwords through computational brute-forcing of weak hashes.

  • CVE-2025-51726HigAug 4, 2025
    risk 0.55cvss 8.4epss 0.00

    CyberGhostVPNSetup.exe (Windows installer) is signed using the weak cryptographic hash algorithm SHA-1, which is vulnerable to collision attacks. This allows a malicious actor to craft a fake installer with a forged SHA-1 certificate that may still be accepted by Windows…

  • CVE-2024-47921HigDec 30, 2024
    risk 0.55cvss 8.4epss 0.00

    Smadar SPS – CWE-327: Use of a Broken or Risky Cryptographic Algorithm

  • CVE-2017-5243HigJun 6, 2017
    risk 0.55cvss 8.5epss 0.01

    The default SSH configuration in Rapid7 Nexpose hardware appliances shipped before June 2017 does not specify desired algorithms for key exchange and other important functions. As a result, it falls back to allowing ALL algorithms supported by the relevant version of OpenSSH and…

  • CVE-2019-25651HigMar 27, 2026
    risk 0.54cvss 8.3epss 0.00

    Ubiquiti UniFi Network Controller prior to 5.10.12 (excluding 5.6.42), UAP FW prior to 4.0.6, UAP-AC, UAP-AC v2, and UAP-AC Outdoor FW prior to 3.8.17, USW FW prior to 4.0.6, USG FW prior to 4.4.34 uses AES-CBC encryption for device-to-controller communication, which contains…

  • CVE-2025-59484HigSep 23, 2025
    risk 0.54cvss 8.3epss 0.00

    The use of a broken or risky cryptographic algorithm was discovered in firmware version 3.60 of the Click Plus PLC. The vulnerability relies on the fact that the software uses an insecure implementation of the RSA encryption algorithm.

  • CVE-2025-14813CriApr 15, 2026
    risk 0.53cvss epss 0.00

    : Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcprov on all (core modules). This vulnerability is associated with program files G3413CTRBlockCipher. This issue affects BC-JAVA: from 1.59 before 1.80.2, from 1.81…

  • CVE-2018-7211HigFeb 18, 2018
    risk 0.53cvss 8.1epss 0.01

    An issue was discovered in iDashboards 9.6b. The SSO implementation is affected by a weak obfuscation library, allowing man-in-the-middle attackers to discover credentials.

  • CVE-2026-44699CriMay 15, 2026
    risk 0.52cvss epss 0.00

    LibJWT is a C JSON Web Token Library. From 3.0.0 to 3.3.2, libjwt accepts an RSA JWK that does not contain an alg parameter as the verification key for an HS256/HS384/HS512 token. In the OpenSSL backend, this causes HMAC verification to run with a zero-length key, so an attacker…

  • CVE-2026-34950CriApr 6, 2026
    risk 0.52cvss 9.1epss 0.00

    fast-jwt provides fast JSON Web Token (JWT) implementation. In 6.1.0 and earlier, the publicKeyPemMatcher regex in fast-jwt/src/crypto.js uses a ^ anchor that is defeated by any leading whitespace in the key string, re-enabling the exact same JWT algorithm confusion attack that…

  • CVE-2017-12129HigMay 14, 2018
    risk 0.52cvss 8.0epss 0.01

    An exploitable Weak Cryptography for Passwords vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. An attacker could intercept weakly encrypted passwords and could brute force them.

  • CVE-2018-6619HigMay 11, 2018
    risk 0.51cvss 7.8epss 0.00

    Easy Hosting Control Panel (EHCP) v0.37.12.b makes it easier for attackers to crack database passwords by leveraging use of a weak hashing algorithm without a salt.

  • CVE-2017-15997HigOct 29, 2017
    risk 0.51cvss 7.8epss 0.00

    In the "NQ Contacts Backup & Restore" application 1.1 for Android, RC4 encryption is used to secure the user password locally stored in shared preferences. Because there is a static RC4 key, an attacker can gain access to user credentials more easily by leveraging access to the…

  • CVE-2005-4860HigDec 31, 2005
    risk 0.51cvss 7.8epss 0.00

    Spectrum Cash Receipting System before 6.504 uses weak cryptography (static substitution) in the PASSFILE password file, which makes it easier for local users to gain privileges by decrypting a password.

  • CVE-2025-2539HigMar 20, 2025
    risk 0.50cvss 7.5epss 0.02

    The File Away plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ajax() function in all versions up to, and including, 3.9.9.0.1. This makes it possible for unauthenticated attackers, leveraging the use of a reversible weak…

  • CVE-2025-63912HigMar 3, 2026
    risk 0.49cvss 7.5epss 0.00

    Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to use a weak cryptography algorithm for data encryption, allowing attackers to trivially reverse the encyption and expose credentials.

  • CVE-2025-6521HigJun 27, 2025
    risk 0.49cvss 7.6epss 0.00

    During the initial setup of the device the user connects to an access point broadcast by the Sight Bulb Pro. During the negotiation, AES Encryption keys are passed in cleartext. If captured, an attacker may be able to decrypt communications between the management app and the…