Back to CWE list
CWE-325
Missing Cryptographic Step
Base
Draft
Description
The product does not implement a required step in a cryptographic algorithm, resulting in weaker encryption than advertised by the algorithm.
Parent Weaknesses (ChildOf)
Related Weaknesses
Common Consequences
Scope
Access Control
Impact
Bypass Protection Mechanism
Scope
Confidentiality
Integrity
Impact
Read Application Data, Modify Application Data
Scope
Accountability
Non-Repudiation
Impact
Hide Activities
CVE-2001-1585Missing challenge-response step allows authentication bypass using public key.
Applicable Platforms
Not Language-Specific
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now