Use of a Broken or Risky Cryptographic Algorithm
| Property | |
|---|---|
| Language | clojure |
| Severity |  |
| CWE | CWE-327: Use of a Broken or Risky Cryptographic Algorithm |
| OWASP | A03:2017 - Sensitive Data Exposure |
| Confidence Level | High |
| Impact Level | High |
| Likelihood Level | Medium |
Description#
The code uses the SHA-1 hashing algorithm, which is outdated and no longer secure for protecting sensitive data. SHA-1 is vulnerable to collision attacks, making it unsuitable for cryptographic purposes such as password hashing or digital signatures.
Impact#
If SHA-1 is used, attackers may be able to create different inputs that produce the same hash, allowing them to bypass authentication, forge data, or compromise the integrity of stored information. This can lead to data breaches, unauthorized access, and loss of trust in the application’s security.