CWE-331: Insufficient Entropy

CWE-331: Insufficient Entropy | RadicalNotion.AI

Code examples

Illustrative examples from MITRE showing how the weakness appears in code.

This code generates a unique random identifier for a user's session.

Vulnerable example

php

function generateSessionID($userID){

The following code uses a statistical PRNG to create a URL for a receipt that remains active for some period of time after a purchase.

Vulnerable example

java

String GenerateReceiptURL(String baseUrl) {

This code uses the Random.nextInt() function to generate "unique" identifiers for the receipt pages it generates. Because Random.nextInt() is a statistical PRNG, it is easy for an attacker to guess the strings it generates. Although the underlying design of the receipt system is also faulty, it would be more secure if it used a random number generator that did not produce predictable receipt identifiers, such as a cryptographic PRNG.

CWE-331: Insufficient Entropy

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

How to detect it

Automated Static Analysis

Code examples

Illustrative examples

Terminology & mappings

Mapped taxonomies

Attack patterns

Frequently asked questions

What is CWE-331?

What CVEs are caused by CWE-331?

How do you prevent CWE-331?

How is CWE-331 detected?

What are the consequences of CWE-331?

Is CWE-331 actively exploited?

References

Stay ahead of CWE-331

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

How to detect it

Automated Static Analysis

Code examples

Illustrative examples

Related weaknesses

Parent

Child

Terminology & mappings

Mapped taxonomies

Attack patterns

Frequently asked questions

What is CWE-331?

What CVEs are caused by CWE-331?

How do you prevent CWE-331?

How is CWE-331 detected?

What are the consequences of CWE-331?

Is CWE-331 actively exploited?

References

Stay ahead of CWE-331