| Title | editso fuso dev CWE-326: Inadequate Encryption Strength |
|---|
| Description | In file src/net/penetrate/handshake/mod.rs
let priv_key = rsa::RsaPrivateKey::new(&mut rand::thread_rng(), 1024)?;
The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required. |
|---|
| Source | ⚠️ https://github.com/editso/fuso/blob/refactor/dev/src/net/penetrate/handshake/mod.rs |
|---|
| User | dev03301 (UID 88717) |
|---|
| Submission | 08/15/2025 10:51 (10 months ago) |
|---|
| Moderation | 08/26/2025 22:44 (11 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 321506 [editso fuso up to 1.0.4-beta.7 mod.rs PenetrateRsaAndAesHandshake priv_key inadequate encryption] |
|---|
| Points | 18 |
|---|