CWE-323 - Reusing a Nonce, Key Pair in Encryption


Nonces should be used for the present occasion and only once. Potentially a replay attack, in which an attacker could send the same data twice, could be crafted if nonces are allowed to be reused. This could allow a user to send a message which masquerades as a valid message from a valid user. This weakness is caused during implementation of an architectural security tactic.

Latest vulnerabilities for CWE-323


Description of CWE-323 on Mitre website