VariantDraft
CWE-321Use of Hard-coded Cryptographic Key
Category: other
Description
The product uses a hard-coded, unchangeable cryptographic key.
Common consequences· 1
- Access Control — Bypass Protection Mechanism, Gain Privileges or Assume Identity, Read Application DataIf hard-coded cryptographic keys are used, it is almost certain that malicious users will gain access through the account in question. The use of a hard-coded cryptographic key significantly increases the possibility that encrypted data may be recovered.
Potential mitigations· 1
- [Architecture and Design]Prevention schemes mirror that of hard-coded password storage.
References
Compliance frameworks addressing this (incoming)2
| Type | Target | Confidence | Tier |
|---|---|---|---|
| ComplianceControl | owasp_top10-a02 | 100% | live |
| ComplianceControl | iso27001-a.8.24 | 100% | live |
(incoming)48
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Vulnerability | CVE-2025-11290cve-2025-11290 | 0% | live |
| Vulnerability | CVE-2025-11609cve-2025-11609 | 0% | live |
| Vulnerability | CVE-2025-11899cve-2025-11899 | 0% | live |
| Vulnerability | CVE-2025-12599cve-2025-12599 | 0% | live |
| Vulnerability | CVE-2025-12615cve-2025-12615 | 0% | live |
| Vulnerability | CVE-2025-13316cve-2025-13316 | 0% | live |
| Vulnerability | CVE-2025-14923cve-2025-14923 | 0% | live |
| Vulnerability | CVE-2025-15016cve-2025-15016 | 0% | live |
| Vulnerability | CVE-2025-15107cve-2025-15107 | 0% | live |
| Vulnerability | CVE-2025-26340cve-2025-26340 | 0% | live |
| Vulnerability | CVE-2025-27674cve-2025-27674 | 0% | live |
| Vulnerability | CVE-2025-30095cve-2025-30095 | 0% | live |
| Vulnerability | CVE-2025-30206cve-2025-30206 | 0% | live |
| Vulnerability | CVE-2025-30234cve-2025-30234 | 0% | live |
| Vulnerability | Gladinet CentreStack and Triofox Use of Hard-coded Cryptographic Key Vulnerabilitycve-2025-30406 | 0% | live |
| Vulnerability | CVE-2025-3177cve-2025-3177 | 0% | live |
| Vulnerability | CVE-2025-34215cve-2025-34215 | 0% | live |
| Vulnerability | CVE-2025-34217cve-2025-34217 | 0% | live |
| Vulnerability | CVE-2025-34256cve-2025-34256 | 0% | live |
| Vulnerability | CVE-2025-40946cve-2025-40946 | 0% | live |
| Vulnerability | CVE-2025-41702cve-2025-41702 | 0% | live |
| Vulnerability | CVE-2025-44963cve-2025-44963 | 0% | live |
| Vulnerability | CVE-2025-45746cve-2025-45746 | 0% | live |
| Vulnerability | CVE-2025-5164cve-2025-5164 | 0% | live |
| Vulnerability | CVE-2025-54807cve-2025-54807 | 0% | live |
| Vulnerability | CVE-2025-54947cve-2025-54947 | 0% | live |
| Vulnerability | CVE-2025-55619cve-2025-55619 | 0% | live |
| Vulnerability | CVE-2025-56577cve-2025-56577 | 0% | live |
| Vulnerability | CVE-2025-57174cve-2025-57174 | 0% | live |
| Vulnerability | CVE-2025-59407cve-2025-59407 | 0% | live |
Showing top 30 of 48 by confidence. Click any target to see the full neighbourhood.
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.