Description
The product generates and uses a predictable initialization Vector (IV) with Cipher Block Chaining (CBC) Mode, which causes algorithms to be susceptible to dictionary attacks when they are encrypted under the same key.
CVE vulnerabilities with CWE-329 (11)
7.5
CVSS
HIGH
CVE-2022-46397
pub. 2023-03-28
6.5
CVSS
MEDIUM
CVE-2020-5408
pub. 2020-05-14
6.4
CVSS
MEDIUM
CVE-2017-3226
pub. 2018-07-24
6.0
CVSS
MEDIUM
CVE-2026-45787
pub. 2026-05-28
5.9
CVSS
MEDIUM
CVE-2021-27499
pub. 2021-08-02
5.3
CVSS
MEDIUM
CVE-2024-49783
pub. 2025-07-08
4.6
CVSS
MEDIUM
CVE-2017-3225
pub. 2018-07-24
4.0
CVSS
MEDIUM
CVE-2025-2814
pub. 2025-04-13
3.7
CVSS
LOW
CVE-2008-5161
pub. 2008-11-19
3.4
CVSS
LOW
CVE-2014-3566
pub. 2014-10-15
3.3
CVSS
LOW
CVE-2022-29054
pub. 2023-02-16