CWE-342 - Predictable Exact Value from Previous Values

Home/CWEs/CWE info/

CWE-342

Abstraction:
Base

Structure:
Simple

Status:
Draft

Weakness Name: Predictable Exact Value from Previous Values

Description: An exact value or random number can be precisely predicted by observing previous values.

Common Consequences: Scope: Other
Impact: Varies by Context

Related Weaknesses: CWE-340Generation of Predictable Numbers or Identifiers

Release Date:
2006-07-19

Latest Modification Date:
2023-06-29

Top Security News

Truist Bank confirms breach after stolen data shows up on hacking forum

Massive PSAUX ransomware attack targets 22,000 CyberPanel instances

Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443)

Microsoft SharePoint RCE bug exploited to breach corporate network

Google patches actively exploited Android vulnerability (CVE-2024-43093)

VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware

Download: CIS Critical Security Controls v8.1

CISA proposes new security requirements to protect govt, personal data

Common Alerts

HighRemote Code Execution - Shell Shock

MediumBuffer Overflow

MediumXSLT Injection

MediumCSP: Wildcard Directive

HighExternal Redirect

HighCross-Domain Misconfiguration - Adobe - Read

InformationalSec-Fetch-Site Header is Missing

InformationalCharset Mismatch

InformationalCSP: Header & Meta

Top CVE List

CVE-2024-38094 Microsoft SharePoint Deserialization Vulnerability

CVE-2024-8957 PTZOptics PT30X-SDI/NDI Cameras OS Command Injection Vulnerability

CVE-2024-37383 RoundCube Webmail Cross-Site Scripting (XSS) Vulnerability

CVE-2019-16278 Nostromo nhttpd Directory Traversal Vulnerability

CVE-2024-20481 Cisco ASA and FTD Denial-of-Service Vulnerability

CVE-2024-51567 CyberPanel Incorrect Default Permissions Vulnerability

CVE-2024-5910 Palo Alto Expedition Missing Authentication Vulnerability

CVE-2024-8956 PTZOptics PT30X-SDI/NDI Cameras Authentication Bypass Vulnerability

CVE-2017-6736 Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability

CVE-2020-3452 Cisco ASA and FTD Read-Only Path Traversal Vulnerability

Common CWEs

CWE-571 Expression is Always True

CWE-573 Improper Following of Specification by Caller

CWE-826 Premature Release of Resource During Expected Lifetime

MediumCWE-95 Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')

MediumCWE-476 NULL Pointer Dereference

CWE-792 Incomplete Filtering of One or More Instances of Special Elements

CWE-669 Incorrect Resource Transfer Between Spheres

CWE-582 Array Declared Public, Final, and Static

CWE-451 User Interface (UI) Misrepresentation of Critical Information

CWE-914 Improper Control of Dynamically-Identified Variables

Free security scan for your website

Don't show website scan report rating on the leaderboard

CWE-342 - Predictable Exact Value from Previous Values

An exact value or random number can be precisely predicted by observing previous values.