Insufficient Entropy in PRNG

CWE-332

CVSS severity (NVD, All Time)

Per technology (GHSA, All time)

75%-Composer
25%-Go

Short description

The lack of entropy available for, or used by, a Pseudo-Random Number Generator (PRNG) can be a stability and security threat.

Best practices to prevent this CWE

Phase: Architecture and Design; Requirements

Strategy: Libraries or Frameworks

Use products or modules that conform to FIPS 140-2 to avoid obvious entropy problems. Consult FIPS 140-2 Annex C ("Approved Random Number Generators").

Phase: Implementation

Consider a PRNG that re-seeds itself as needed from high-quality pseudo-random output, such as hardware devices.

Phase: Architecture and Design

When deciding which PRNG to use, look at its sources of entropy. Depending on what your security needs are, you may need to use a random number generator that always uses strong random data -- i.e., a random number generator that attempts to be strong but will fail in a weak way or will always provide some middle ground of protection through techniques like re-seeding. Generally, something that always provides a predictable amount of strength is preferable.

Recently published CVEs

CVE-2019-1715
CVE-2018-9057
CVE-2017-18486
CVE-2017-9371
CVE-2016-10743

Recently published GHSA

GHSA-q9qr-jwpw-3qvv
GHSA-jjx5-fq5g-8xpc

Prioritize and Uncover Reachable Vulnerabilities in Your Application Code

Identify externally reachable data flows and vulnerabilities for effective risk mitigation

Get a Demo