CVE-2026-47372

Sažetak

Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography.

Reference

https://github.com/robrwo/perl-Crypt-SaltedHash/commit/9b68437d2cd420b819b3a795474c3870338d38d5.patch
https://metacpan.org/release/RRWO/Crypt-SaltedHash-0.10/changes
http://www.openwall.com/lists/oss-security/2026/05/20/22

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

21-05-2026 - 02:16

Objavljeno

20-05-2026 - 22:16