GHSA-3rw7-pf56-37cvHighCVSS 7.5

Crypt::PBKDF2 versions before 0.261630 for Perl generate insecure random values for salts. These...

Published
June 12, 2026
Last Modified
June 12, 2026

🔗 CVE IDs covered (1)

📋 Description

Crypt::PBKDF2 versions before 0.261630 for Perl generate insecure random values for salts.

These versions use the built-in rand function, which is predictable and unsuitable for cryptography.

🔗 References (5)