CWE-338 – Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
Description The product uses a Pseudo-Random Number Generator (PRNG) in a security context, but the PRNG's algorithm is not cryptographically strong. Modes of Introduction: -...
CWE-330 – Use of Insufficiently Random Values
Description The software uses insufficiently random numbers or values in a security context that depends on unpredictable numbers. When software generates predictable values in a...