CVE-2026-47372

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

20/05/2026

Last modified:

20/05/2026

Description

Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts.<br /> <br /> These versions use the built-in rand function, which is predictable and unsuitable for cryptography.

Impact

References to Advisories, Solutions, and Tools

https://github.com/robrwo/perl-Crypt-SaltedHash/commit/9b68437d2cd420b819b3a795474c3870338d38d5.patch
https://metacpan.org/release/RRWO/Crypt-SaltedHash-0.10/changes