| Titolo | https://github.com/calmkart Django-sso-server master CWE-326: Inadequate Encryption Strength |
|---|
| Descrizione | In file common/crypto.py
```common/crypto.py
def gen_rsa_keys(self):
rsa = RSA.generate(1024, self.random_generator)
private_pem = rsa.exportKey()
public_pem = rsa.publickey().exportKey()
return (private_pem, public_pem)
```
CWE-326: Inadequate Encryption Strength
+ Description
The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.
|
|---|
| Fonte | ⚠️ https://github.com/calmkart/Django-sso-server |
|---|
| Utente | dev03303 (UID 85336) |
|---|
| Sottomissione | 15/05/2025 10:26 (1 Anno fa) |
|---|
| Moderazione | 17/05/2025 11:55 (2 days later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 309448 [calmkart Django-sso-server fino a 057247929a94ffc358788a37ab99e391379a4d15 common/crypto.py gen_rsa_keys cifratura debole] |
|---|
| Punti | 20 |
|---|