CWE-323: Reusing a Nonce, Key Pair in Encryption

CWE-323: Reusing a Nonce, Key Pair in Encryption | RadicalNotion.AI

Code examples

Illustrative examples from MITRE showing how the weakness appears in code.

This code takes a password, concatenates it with a nonce, then encrypts it before sending over a network:

Vulnerable example

void encryptAndSendPassword(char *password){

Because the nonce used is always the same, an attacker can impersonate a trusted party by intercepting and resending the encrypted password. This attack avoids the need to learn the unencrypted password.

This code sends a command to a remote server, using an encrypted password and nonce to prove the command is from a trusted party:

Vulnerable example

cpp

String command = new String("some command to execute");

Once again the nonce used is always the same. An attacker may be able to replay previous legitimate commands or execute new arbitrary commands.

CWE-323: Reusing a Nonce, Key Pair in Encryption

Overview

Background

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

How to detect it

Automated Static Analysis

Code examples

Illustrative examples

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-323?

What CVEs are caused by CWE-323?

How do you prevent CWE-323?

How is CWE-323 detected?

What are the consequences of CWE-323?

Is CWE-323 actively exploited?

References

Stay ahead of CWE-323

Overview

Background

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

How to detect it

Automated Static Analysis

Code examples

Illustrative examples

Related weaknesses

Parent

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-323?

What CVEs are caused by CWE-323?

How do you prevent CWE-323?

How is CWE-323 detected?

What are the consequences of CWE-323?

Is CWE-323 actively exploited?

References

Stay ahead of CWE-323