CWE-341: Predictable from Observable State
A number or object is predictable based on observations that the attacker can make about the state of the system or network, such as time, process ID, etc.
Last updated
Overview
CWE-341 (Predictable from Observable State) is a base-level software weakness catalogued by MITRE in the Common Weakness Enumeration (CWE). It describes a recurring type of mistake that can lead to exploitable security vulnerabilities.
Real-world CVEs
13 recorded CVEs are caused by CWE-341 (Predictable from Observable State). The highest-severity and most recent are shown first. 3 new CWE-341 CVEs have been recorded so far in 2026 (3 in 2025).