CWE-329 - Not Using an Unpredictable IV with CBC Mode

Description

Not using an unpredictable initialization Vector (IV) with Cipher Block Chaining (CBC) Mode causes algorithms to be susceptible to dictionary attacks when they are encrypted under the same key.

Latest vulnerabilities for CWE-329

Multiple vulnerabilities in Akuvox E11 2023-03-13
High No

Multiple vulnerabilities in Ypsomed mylife 2021-07-16
Medium Yes

References

Description of CWE-329 on Mitre website