CWE-330Use of Insufficiently Random Values

Description

The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

Common consequences

• Confidentiality,Other→Other
  When a protection mechanism relies on random values to restrict access to a sensitive resource, such as a session ID or a seed for generating a cryptographic key, then the resource being protected could be accessed by guessing the ID or key
• Access Control,Other→Bypass Protection Mechanism,Other
  If product relies on unique, unguessable IDs to identify a resource, an attacker might be able to guess an ID for a resource that is owned by another user. The attacker could then read the resource, or pre-create a resource with the same ID
• Access Control→Bypass Protection Mechanism,Gain Privileges or Assume Identity
  When an authorization or authentication mechanism relies on random values to restrict access to restricted functionality, such as a session ID or a seed for generating a cryptographic key, then an attacker may access the restricted function

Potential mitigations

• Architecture and Design
  [object Object]
• Implementation
  Consider a PRNG that re-seeds itself as needed from high quality pseudo-random output sources, such as hardware devices.
• Architecture and Design,Requirements
  Use products or modules that conform to FIPS 140-2 [REF-267] to avoid obvious entropy problems. Consult FIPS 140-2 Annex C ("Approved Random Number Generators").

Related CWEs

Recent CVEs classified under this CWE