Use of a Broken or Risky Cryptographic Algorithm
| Property | |
|---|---|
| Language | java |
| Severity |  |
| CWE | CWE-327: Use of a Broken or Risky Cryptographic Algorithm |
| OWASP | A03:2017 - Sensitive Data Exposure |
| Confidence Level | High |
| Impact Level | Medium |
| Likelihood Level | Medium |
Description#
The code uses the ECB (Electronic Codebook) mode for encryption, which always produces the same encrypted output for identical input data. This makes it easy for attackers to spot patterns and potentially reveal sensitive information.
Impact#
If exploited, attackers can analyze encrypted data to deduce original values, especially repeated or predictable information, leading to exposure of confidential data. This could result in leaks of personal, financial, or business-critical information and increase the risk of data breaches.