Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-341 (从可观察状态的可预测) — Vulnerability Class 10

10 vulnerabilities classified as CWE-341 (从可观察状态的可预测). AI Chinese analysis included.

CWE-341 represents a design weakness where security-critical values, such as session tokens or cryptographic keys, are generated using predictable inputs observable by an attacker. This flaw typically enables attackers to guess or reconstruct sensitive identifiers by analyzing system states like timestamps, process IDs, or sequential counters, thereby bypassing authentication or hijacking active sessions. Developers mitigate this risk by implementing cryptographically secure random number generators that produce high-entropy outputs independent of observable system variables. Additionally, utilizing non-sequential, unpredictable identifiers and regularly rotating secrets ensures that even if partial state information is leaked, the resulting values remain computationally infeasible to predict, maintaining the integrity and confidentiality of the application’s security mechanisms.

MITRE CWE Description
A number or object is predictable based on observations that the attacker can make about the state of the system or network, such as time, process ID, etc.
Common Consequences (1)
OtherVaries by Context
This weakness could be exploited by an attacker in a number ways depending on the context. If a predictable number is used to generate IDs or keys that are used within protection mechanisms, then an attacker could gain unauthorized access to the system. If predictable filenames are used for storing …
Mitigations (3)
ImplementationIncrease the entropy used to seed a PRNG.
Architecture and Design, RequirementsUse products or modules that conform to FIPS 140-2 [REF-267] to avoid obvious entropy problems. Consult FIPS 140-2 Annex C ("Approved Random Number Generators").
ImplementationUse a PRNG that periodically re-seeds itself using input from high-quality sources, such as hardware devices with high entropy. However, do not re-seed too frequently, or else the entropy source might block.
Examples (1)
This code generates a unique random identifier for a user's session.
function generateSessionID($userID){ srand($userID); return rand(); }
Bad · PHP
CVE IDTitleCVSSSeverityPublished
CVE-2026-42365 GeoVision LPC2011/LPC2211 Web Interface guessable session cookie vulnerability — GV-LPC2011/LPC2211 8.6 High2026-05-04
CVE-2025-40780 Cache poisoning due to weak PRNG — BIND 9 8.6 High2025-10-22
CVE-2025-42925 Predictable Object Identifier vulnerability in SAP NetWeaver AS Java (IIOP Service) — SAP NetWeaver AS Java (IIOP Service) 4.3 Medium2025-09-09
CVE-2024-10141 jsbroks COCO Annotator Session predictable state — COCO Annotator 3.7 Low2024-10-19
CVE-2023-49259 Bruteforcing authentication cookie for a given user — H8951-4G-ESP 5.3 -2024-01-12
CVE-2021-4277 fredsmith utils Filename screenshot_sync predictable state — utils 2.6 Low2022-12-25
CVE-2020-5365 Dell EMC Isilon OneFS 安全特征问题漏洞 — Isilon OneFS 5.3 Medium2020-05-20
CVE-2020-1731 Red Hat Keycloak operator 安全漏洞 — keycloak 9.1 Critical2020-03-02
CVE-2019-6563 多款Moxa产品信息泄露漏洞 — Moxa IKS, EDS 9.8 -2019-03-05
CVE-2018-17917 Xiongmai XMeye P2P Cloud Server 安全漏洞 — XMeye P2P Cloud Server 5.3 -2018-10-10

Vulnerabilities classified as CWE-341 (从可观察状态的可预测) represent 10 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.