Home / Vulnerability Database / Objective-C : Cryptographic key reused

Objective-C

Objective-C : Cryptographic key reused

Classification

OWASP Top 10 2021

A4-Insecure Design

OWASP MASVS

V3: 3.5.(L1/L2/L1+R/L2+R)V8: 8.13.(L1+R/L2+R)

OWASP ASVS

Stored Cryptography Stored Cryptography

CWE

CWE-656 CWE-693

Overview

The application reuses cryptographic keys, which increases access possibilities in case of a possible key cracking.

References

CWE-693: Protection Mechanism Failure

LOW

DerScanner Severity Score

Do you want to fix Objective-C : Cryptographic key reused in your application?

See also

Objective-C

Objective-C : Internal information leak

Objective-C

Objective-C : Weak hashing algorithm

Objective-C

Objective-C : Unsafe reflection