CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/08/27 12:0 a.m.•2 views

OPENSUSE-SU-2025:15495-1 perl-Crypt-CBC-3.70.0-1.1 on GA media

These are all security issues fixed in the perl-Crypt-CBC-3.70.0-1.1 package on the GA media of openSUSE Tumbleweed...

4CVSS5.8AI score0.00042EPSS

Exploits0References1

Fedora•added 2025/08/06 1:36 a.m.•4 views

[SECURITY] Fedora 42 Update: perl-Crypt-CBC-3.07-1.fc42

This is Crypt::CBC, a Perl-only implementation of the cryptographic cipher block chaining mode CBC. In combination with a block cipher such as Crypt::DES or Crypt::IDEA, you can encrypt and decrypt messages of arbitrarily long length. The encrypted messages are compatible with the encryption form...

4CVSS7.3AI score0.00042EPSS

OpenVAS•added 2025/08/06 12:0 a.m.•2 views

Fedora: Security Advisory (FEDORA-2025-f7bc7b789f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4CVSS5.2AI score0.00042EPSS

OpenVAS•added 2025/08/06 12:0 a.m.•3 views

Fedora: Security Advisory (FEDORA-2025-1d22f55c40)

4CVSS5.2AI score0.00042EPSS

Tenable Nessus•added 2025/08/06 12:0 a.m.•2 views

Fedora 41 : perl-Crypt-CBC (2025-1d22f55c40)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-1d22f55c40 advisory. This update, to the current upstream release version, includes a fix to source random numbers using the Crypt::URandom module rather than trying to read...

4CVSS5.3AI score0.00042EPSS

Exploits0References2

Tenable Nessus•added 2025/07/30 12:0 a.m.•1 views

FreeBSD : p5-Crypt-CBC -- Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) (cd7f969e-6cb4-11f0-97c4-40b034429ecf)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the cd7f969e-6cb4-11f0-97c4-40b034429ecf advisory. Lib-Crypt-CBC project reports: Crypt::CBC versions between 1.21 and 3.05 for Perl may use the rand...

4CVSS5.3AI score0.00042EPSS

Redos•added 2025/07/01 12:0 a.m.•2 views

ROS-20250630-11

The vulnerability of a data encryption package using Crypt::CBC encryption block chain mode is due to the fact, that the rand function is not cryptographically secure. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

4CVSS4.5AI score0.00042EPSS

NVD•added 2025/04/13 12:15 a.m.•19 views

CVE-2025-2814

Crypt::CBC versions between 1.21 and 3.05 for Perl may use the rand function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. This issue affects operating systems where "/dev/urandom'" is unavailable. In that case, Crypt::CBC will fallback to...

4CVSS0.00042EPSS

CNNVD•added 2025/04/13 12:0 a.m.•2 views

MetaCPAN Crypt::CBC 安全特征问题漏洞

MetaCPAN Crypt::CBC is a component of the MetaCPAN Foundation. A security signature issue vulnerability exists in MetaCPAN Crypt::CBC versions 1.21 through 3.04, which stems from the default use of an insecure rand function as an entropy source...

4CVSS5AI score0.00042EPSS

Exploits0References5

Debian CVE•added 2025/04/12 11:41 p.m.•6 views

CVE-2025-2814

4CVSS5.1AI score0.00042EPSS

Vulnrichment•added 2025/04/12 11:41 p.m.•6 views

CVE-2025-2814 Crypt::CBC versions between 1.21 and 3.05 for Perl may use insecure rand() function for cryptographic functions

4.3AI score0.00042EPSS

Cvelist•added 2025/04/12 11:41 p.m.•29 views

CVE-2025-2814 Crypt::CBC versions between 1.21 and 3.05 for Perl may use insecure rand() function for cryptographic functions

0.00042EPSS

CVE•added 2025/04/12 11:41 p.m.•121 views

CVE-2025-2814

CVE-2025-2814 affects Crypt::CBC for Perl versions 1.21–3.05, which may use the non-cryptographically secure rand() as the entropy source when /dev/urandom is unavailable. Several advisories confirm the issue and report a fix that sources randomness via Crypt::URandom instead of falling back to r...

4CVSS4.3AI score0.00042EPSS

Positive Technologies•added 2025/04/12 12:0 a.m.•3 views

PT-2025-16174 · Unknown +2 · Crypt::Cbc +2

Name of the Vulnerable Software and Affected Versions: Crypt::CBC versions 1.21 through 3.04 Description: The issue affects Crypt::CBC for Perl, where versions between 1.21 and 3.04 may use the rand function as the default source of entropy, which is not cryptographically secure, for cryptographi...

4CVSS4.8AI score0.00042EPSS

Exploits0References26

Tenable Nessus•added 2010/01/10 12:0 a.m.•58 views

RHEL 3 / 4 : Satellite Server (RHSA-2008:0524)

Red Hat Network Satellite Server version 4.2.3 is now available. This update includes fixes for a number of security issues in Red Hat Network Satellite Server components. This update has been rated as having low security impact by the Red Hat Security Response Team. This release corrects several...

10CVSS5.3AI score0.90452EPSS

Exploits31References75

OpenVAS•added 2008/09/24 12:0 a.m.•11 views

Gentoo Security Advisory GLSA 200603-15 (crypt-cbc)

The remote host is missing updates announced in advisory GLSA 200603-15. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.6CVSS6.7AI score0.01439EPSS