Not really. Sometimes it's the case, but usually the problems have nothing to do with encryption or its implementation, but with the security design and implementation of parts that have nothing to do with encryption.

Encryption is usually an open source library that they just use.