| 标题 | https://github.com/calmkart Django-sso-server master CWE-326: Inadequate Encryption Strength |
|---|
| 描述 | In file common/crypto.py
```common/crypto.py
def gen_rsa_keys(self):
rsa = RSA.generate(1024, self.random_generator)
private_pem = rsa.exportKey()
public_pem = rsa.publickey().exportKey()
return (private_pem, public_pem)
```
CWE-326: Inadequate Encryption Strength
+ Description
The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.
|
|---|
| 来源 | ⚠️ https://github.com/calmkart/Django-sso-server |
|---|
| 用户 | dev03303 (UID 85336) |
|---|
| 提交 | 2025-05-15 10時26分 (1 年前) |
|---|
| 管理 | 2025-05-17 11時55分 (2 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 309448 [calmkart Django-sso-server 直到 057247929a94ffc358788a37ab99e391379a4d15 common/crypto.py gen_rsa_keys 弱加密] |
|---|
| 积分 | 20 |
|---|