SYM_PY_0251 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Use of a Broken or Risky Cryptographic Algorithm
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-327: Use of a Broken or Risky Cryptographic Algorithm |
| OWASP | A03:2017 - Sensitive Data Exposure |
| Confidence Level | Medium |
| Impact Level | Medium |
| Likelihood Level | Low |
Description
The code uses the XOR cipher for encryption, which is a weak and outdated algorithm that can be easily broken. Sensitive data protected this way can be quickly decrypted by attackers.
Impact
If exploited, attackers can easily recover confidential information such as passwords, personal data, or business secrets. This could lead to data breaches, loss of trust, and compliance violations.