Login Sign Up

CWE-337: CWE-337

5
Total CVEs
0
Critical
5
High
7.9
Avg CVSS

Yearly Trend

2026
2
2025
1
2024
1
2021
1

Top Affected Vendors

1 Pear 1
2 Canonical 1
3 Epignosishq 1

All CWE-337 CVEs (5)

CVE-2024-7558
8.7

CVE-2024-7558 allows unprivileged users on the same network namespace to guess the JUJU_CONTEXT_ID authentication secret and access Juju charm informa...

Oct 2, 2024
CVE-2025-55069
8.3

A predictable seed in the pseudo-random number generator in Click Plus PLC firmware version 3.60 allows attackers to predict generated private keys. T...

Sep 23, 2025
CVE-2026-26018
7.5

A denial of service vulnerability in CoreDNS's loop detection plugin allows attackers to crash DNS servers by sending specially crafted DNS queries. T...

Mar 6, 2026
CVE-2026-25235
7.5

This vulnerability in PEAR (PHP Extension and Application Repository) allows attackers to guess verification tokens due to predictable hashes, potenti...

Feb 3, 2026
CVE-2020-28597
7.5

This vulnerability allows attackers to predict password reset tokens in Epignosis EfrontPro, enabling unauthorized password resets for any user accoun...

Mar 3, 2021

About CWE-337 (CWE-337)

Our database tracks 5 CVEs classified as CWE-337, with 0 rated critical and 5 rated high severity. The average CVSS score for CWE-337 vulnerabilities is 7.9.

External reference: View CWE-337 on MITRE CWE →

Monitor CWE-337 Vulnerabilities

Get alerted when new CWE-337 CVEs affect your infrastructure.

Start Monitoring Free