CWE-324 (使用已过期的密钥) — Vulnerability Class 16

16 vulnerabilities classified as CWE-324 (使用已过期的密钥). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-13723	IBM Sterling Partner Engagement Manager Information Disclosure — Sterling Partner Engagement Manager	5.3	Medium	2026-03-13
CVE-2025-33012	IBM Db2 improper account lockout — Db2	6.3	Medium	2025-11-07
CVE-2025-48813	Virtual Secure Mode Spoofing Vulnerability — Windows 10 Version 1809	6.3	Medium	2025-10-14
CVE-2023-5342	Shim: expired secure boot certificate	4.1	Medium	2025-08-15
CVE-2025-2291	PgBouncer default auth_query does not take Postgres password expiry into account — PgBouncer	8.1	High	2025-04-16
CVE-2025-31123	Zitadel Expired JWT Keys Usable for Authorization Grants — zitadel	8.7	High	2025-03-31
CVE-2024-7318	Keycloak-core: one time passcode (otp) is valid longer than expiration timeseverity	4.8	Medium	2024-09-09
CVE-2024-6299	Use of a Key Past its Expiration Date in Conduit — Conduit	4.8	Medium	2024-06-25
CVE-2024-38277	moodle: QR login key and auto-login key for the Moodle mobile app should be generated as separate keys — Moodle	7.5^AI	High^AI	2024-06-18
CVE-2024-31894	IBM App Connect Enterprise information disclosure — App Connect Enterprise	4.3	Medium	2024-05-22
CVE-2024-31895	IBM App Connect Enterprise information disclosure — App Connect Enterprise	4.3	Medium	2024-05-22
CVE-2024-31893	IBM App Connect Enterprise information disclosure — App Connect Enterprise	4.3	Medium	2024-05-22
CVE-2022-35401	ASUS RT-AX82U 授权问题漏洞 — RT-AX82U	9.8	-	2023-01-10
CVE-2022-2447	OpenStack 安全漏洞 — openstack-keystone	6.6	-	2022-09-01
CVE-2021-33020	Philips Vue PACS Use of a Key Past its Expiration Date — Vue PACS	8.2	High	2022-04-01
CVE-2019-3790	Ops Manager uaa client issues tokens after refresh token expiration — Pivotal Ops Manager	4.3	-	2019-06-06

Vulnerabilities classified as CWE-324 (使用已过期的密钥) represent 16 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.