CWE-342 - Predictable Exact Value from Previous Values

Home/CWEs/CWE info/

CWE-342

Abstraction:
Base

Structure:
Simple

Status:
Draft

Weakness Name: Predictable Exact Value from Previous Values

Description: An exact value or random number can be precisely predicted by observing previous values.

Common Consequences: Scope: Other
Impact: Varies by Context

Related Weaknesses: CWE-340Generation of Predictable Numbers or Identifiers

Release Date:
2006-07-19

Latest Modification Date:
2023-06-29

Top Security News

CWE top 25 most dangerous software weaknesses

Chinese APT Gelsemium Targets Linux Systems with New WolfsBane Backdoor

Windows 11 KB5046740 update released with 14 changes and fixes

APT-K-47 Uses Hajj-Themed Lures to Deliver Advanced Asyncshell Malware

Microsoft rolls out Recall to Windows Insiders with Copilot+ PCs

Download: CIS Critical Security Controls v8.1

Hackers now use AppDomain Injection to drop CobaltStrike beacons

Privileged Accounts, Hidden Threats: Why Privileged Access Security Must Be a Top Priority

Top Alert List

MediumAbsence of Anti-CSRF Tokens

MediumDirectory Browsing

InformationalInformation Disclosure - Suspicious Comments

Content Security Policy (CSP) Header Not Set

InformationalModern Web Application

LowServer Leaks Information via "X-Powered-By" HTTP Response Header Field(s)

LowCookie without SameSite Attribute

Cross-Domain Misconfiguration

MediumMissing Anti-clickjacking Header

CSP

Latest CVE List

CVE-2024-44308 Apple Multiple Products Code Execution Vulnerability

CVE-2024-44309 Apple Multiple Products Cross-Site Scripting (XSS) Vulnerability

CVE-2024-21287 Oracle Agile Product Lifecycle Management (PLM) Incorrect Authorization Vulnerability

CVE-2024-38812 VMware vCenter Server Heap-Based Buffer Overflow Vulnerability

CVE-2024-38813 VMware vCenter Server Privilege Escalation Vulnerability

CVE-2024-1212 Progress Kemp LoadMaster OS Command Injection Vulnerability

CVE-2024-0012 Palo Alto Networks PAN-OS Management Interface Authentication Bypass Vulnerability

CVE-2024-9474 Palo Alto Networks PAN-OS Management Interface OS Command Injection Vulnerability

CVE-2024-9463 Palo Alto Networks Expedition OS Command Injection Vulnerability

CVE-2024-9465 Palo Alto Networks Expedition SQL Injection Vulnerability

Common CWEs

CWE-922 Insecure Storage of Sensitive Information

CWE-760 Use of a One-Way Hash with a Predictable Salt

LowCWE-774 Allocation of File Descriptors or Handles Without Limits or Throttling

CWE-81 Improper Neutralization of Script in an Error Message Web Page

CWE-193 Off-by-one Error

CWE-1299 Missing Protection Mechanism for Alternate Hardware Interface

CWE-655 Insufficient Psychological Acceptability

CWE-581 Object Model Violation: Just One of Equals and Hashcode Defined

CWE-1290 Incorrect Decoding of Security Identifiers

CWE-425 Direct Request ('Forced Browsing')

Free security scan for your website

Don't show website scan report rating on the leaderboard

CWE-342 - Predictable Exact Value from Previous Values

An exact value or random number can be precisely predicted by observing previous values.