CWE•Variant•Draft•20 recent CVEs
CWE-321Use of Hard-coded Cryptographic Key
Description
The product uses a hard-coded, unchangeable cryptographic key.
Common consequences
- Access Control→Bypass Protection Mechanism,Gain Privileges or Assume Identity,Read Application DataIf hard-coded cryptographic keys are used, it is almost certain that malicious users will gain access through the account in question. The use of a hard-coded cryptographic key significantly increases the possibility that encrypted data may
Potential mitigations
- Architecture and DesignPrevention schemes mirror that of hard-coded password storage.
Related CWEs
Recent CVEs classified under this CWE
CVE-2026-115055.02026-06-08CVE-2026-463952026-06-05CVE-2026-113472026-06-05CVE-2026-454332026-06-04CVE-2026-502265.32026-06-04CVE-2026-450412026-05-28CVE-2026-242188.12026-05-20CVE-2026-319869.12026-05-19CVE-2026-87395.32026-05-17CVE-2026-251076.52026-05-13CVE-2026-442782.32026-05-12CVE-2025-409468.32026-05-12CVE-2026-333628.62026-05-11CVE-2026-82435.32026-05-10CVE-2025-554497.32026-05-08CVE-2026-67877.82026-05-06CVE-2026-425182026-04-29CVE-2026-73065.62026-04-28CVE-2026-326449.82026-04-28CVE-2026-70185.62026-04-26