Cryptographic Bill of Materials (CBOM) Vulnerabilities
Cryptographic Bill of Materials (CBOM) tracks the complete inventory of cryptographic assets in an application. Precogs AI detects weak ciphers, insufficient key lengths, hardcoded secrets, and expired certificates to ensure adherence to compliance standards.
What is a Cryptographic Bill of Materials (CBOM)?
A CBOM is a structured inventory that lists all cryptographic algorithms, keys, certificates, parameters, and protocols used within a software application. Because legacy ciphers (like 3DES or RC4) and weak key sizes (like RSA-1024) are continuously compromised, cataloging cryptographic usage is critical to maintaining a secure posture. A CBOM enables security teams to identify algorithm deprecations, hardcoded keys, cleartext transfers, and certificate expiration risks across the application codebase and dependencies.
Vulnerability Types
CWE-327
HIGHUse of a Broken or Risky Cryptographic Algorithm
Using deprecated algorithms (such as MD5, SHA-1, DES, or RC4) compromises data confidentiality and integrity, failing co...
CWE-326
HIGHInadequate Encryption Strength
Using keys of insufficient size (e.g. RSA keys under 2048 bits or weak elliptic curves) allows attackers to perform cryp...
CWE-798
HIGHUse of Hard-coded Credentials
Embedding authentication passwords, API tokens, or secrets directly in configuration files, scripts, or source code....
CWE-321
HIGHUse of Hard-coded Cryptographic Key
Embedding private keys, symmetric keys, or certificates directly in compiled binaries. Reversed binaries will leak these...
Recently Discovered in CBOM Security
Browse the latest vulnerabilities and exposures dynamically tracked to the CBOM Security domain.