CWE-331

GPTKB entity

Statements (19)
Predicate Object
gptkbp:instanceOf gptkb:Common_Weakness_Enumeration
gptkbp:category Security Weakness
gptkbp:consequence Predictable random values
Weak cryptographic keys
gptkbp:describes A weakness where a system does not use sufficient entropy in security-critical operations, such as cryptographic key generation.
https://www.w3.org/2000/01/rdf-schema#label CWE-331
gptkbp:maintainedBy gptkb:MITRE_Corporation
gptkbp:mitigatedBy Ensure sufficient entropy sources
Use strong random number generators
gptkbp:name Insufficient Entropy
gptkbp:partOf gptkb:CWE
gptkbp:referencedIn https://cwe.mitre.org/data/definitions/331.html
gptkbp:relatedTo CWE-330
CWE-332
gptkbp:usedIn Software Security Assessment
gptkbp:vulnerableTo 331
gptkbp:bfsParent gptkb:CVE-2017-15361
gptkb:CWE-310
gptkbp:bfsLayer 7