CWE•Base•Draft•4 recent CVEs

CWE-335Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)

Description

The product uses a Pseudo-Random Number Generator (PRNG) but does not correctly manage seeds.

[object Object]

Common consequences

Access Control,Other→Bypass Protection Mechanism,Other
If a PRNG is used incorrectly, such as using the same seed for each initialization or using a predictable seed, then an attacker may be able to easily guess the seed and thus the random numbers. This could lead to unauthorized access to a s

Related CWEs

CWE-330Use of Insufficiently Random Values CWE-330Use of Insufficiently Random Values

Recent CVEs classified under this CWE

CVE-2026-415647.52026-04-23 CVE-2026-258357.72026-04-01 CVE-2026-35035.22026-03-19 CVE-2016-101807.52017-01-30