Описание
The Net::EasyTCP package before 0.15 for Perl always uses Perl's builtin rand(), which is not a strong random number generator, for cryptographic keys.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libnet-easytcp-perl | not-affected | package |
Примечания
https://github.com/briandfoy/cpan-security-advisory/issues/184
EPSS
Процентиль: 21%
0.00065
Низкий
Связанные уязвимости
CVSS3: 5.4
nvd
8 месяцев назад
The Net::EasyTCP package before 0.15 for Perl always uses Perl's builtin rand(), which is not a strong random number generator, for cryptographic keys.
CVSS3: 5.4
github
8 месяцев назад
The Net::EasyTCP package before 0.15 for Perl always uses Perl's builtin rand(), which is not a strong random number generator, for cryptographic keys.
EPSS
Процентиль: 21%
0.00065
Низкий