CVE-2025-27552
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
26/03/2025
Last modified:
27/03/2025
Description
DBIx::Class::EncodedColumn use the rand() function, which is not cryptographically secure to salt password hashes.<br />
<br />
This vulnerability is associated with program files Crypt/Eksblowfish/Bcrypt.pm.<br />
<br />
This issue affects DBIx::Class::EncodedColumn until 0.00032.
Impact
Base Score 3.x
4.00
Severity 3.x
MEDIUM