CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Fedora•added 3 days ago•12 views

[SECURITY] Fedora 43 Update: perl-Crypt-PasswdMD5-1.4.3-1.fc43

This package provides MD5-based crypt functions...

Fedora•added 3 days ago•12 views

[SECURITY] Fedora 44 Update: perl-Crypt-PasswdMD5-1.4.3-1.fc44

This package provides MD5-based crypt functions...

Tenable Nessus•added 3 days ago•7 views

Fedora 44 : perl-Crypt-PasswdMD5 (2026-30d86fe986)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-30d86fe986 advisory. This update uses a cryptographically strong random number source rather than perl's rand function to generate random salt values when required CVE-2026-6659...

Tenable Nessus•added 3 days ago•5 views

Fedora 43 : perl-Crypt-PasswdMD5 (2026-96c8ae7dbe)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-96c8ae7dbe advisory. This update uses a cryptographically strong random number source rather than perl's rand function to generate random salt values when required CVE-2026-6659...

Fedora•added 2026/05/27 1:27 a.m.•8 views

[SECURITY] Fedora 43 Update: perl-Crypt-DSA-1.20-1.fc43

Crypt::DSA is an implementation of the DSA Digital Signature Algorithm signature verification system. This package provides DSA signing, signature verification, and key generation. DSA Digital Signature Algorithm signatures are no longer considered to be adequate for security. This module should...

Fedora•added 2026/05/27 1:12 a.m.•7 views

[SECURITY] Fedora 42 Update: perl-Crypt-DSA-1.20-1.fc42

Tenable Nessus•added 2026/05/27 12:0 a.m.•4 views

Fedora 45 : perl-Crypt-Argon2 / perl-Dist-Build / perl-ExtUtils-Builder / etc (2026-5d15cef372)

The remote Fedora 45 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2026-5d15cef372 advisory. Update perl-Crypt-Argon2 to 0.031 2477035 2481131 fixes CVE-2026-8463 Tenable has extracted the preceding description block directly from the Fedora security...

5.3CVSS5.8AI score0.00041EPSS

Tenable Nessus•added 2026/05/27 12:0 a.m.•4 views

Fedora 43 : perl-Crypt-DSA (2026-fdc100f74f)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-fdc100f74f advisory. This update fixes a couple of security issues: Replace two arg open CVE-2026-8704 Replace rand with a cryptographically-secure source of random data...

Tenable Nessus•added 2026/05/27 12:0 a.m.•6 views

Fedora 44 : perl-Crypt-DSA (2026-cdcb20089b)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-cdcb20089b advisory. This update fixes a couple of security issues: Replace two arg open CVE-2026-8704 Replace rand with a cryptographically-secure source of random data...

Tenable Nessus•added 2026/05/27 12:0 a.m.•4 views

Fedora 42 : perl-Crypt-DSA (2026-ffe3625a50)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-ffe3625a50 advisory. This update fixes a couple of security issues: Replace two arg open CVE-2026-8704 Replace rand with a cryptographically-secure source of random data...

NVD•added 2026/05/26 11:16 p.m.•10 views

CVE-2026-8647

Crypt::ScryptKDF versions through 0.010 for Perl uses insecure random number source when no CSPRNG module is available. The randombytes function fell back to using the built-in rand function when none of the Perl modules Crypt::PRNG, Crypt::OpenSSL::Random, Net::SSLeay, Crypt::Random, or...

4.8CVSS0.00036EPSS

Vulnrichment•added 2026/05/26 10:53 p.m.•5 views

CVE-2026-8647 Crypt::ScryptKDF versions through 0.010 for Perl uses insecure random number source when no CSPRNG module is available

5.8AI score0.00036EPSS

ATTACKERKB•added 2026/05/26 10:53 p.m.•7 views

CVE-2026-8647

5.8AI score0.00036EPSS

EUVD•added 2026/05/26 10:53 p.m.•7 views

EUVD-2026-32022

5.8AI score0.00036EPSS

Cvelist•added 2026/05/26 10:53 p.m.•26 views

CVE-2026-8647 Crypt::ScryptKDF versions through 0.010 for Perl uses insecure random number source when no CSPRNG module is available

0.00036EPSS

CVE•added 2026/05/26 10:53 p.m.•9 views

CVE-2026-8647

CVE-2026-8647 affects Crypt::ScryptKDF for Perl up to version 0.010. When no CSPRNG module is available, the random_bytes path falls back to Perl's built-in rand(), enabling insecure randomness in key derivation. The issue arises if Crypt::PRNG, Crypt::OpenSSL::Random, Net::SSLeay, Crypt::Random,...

4.8CVSS5.8AI score0.00036EPSS

CNNVD•added 2026/05/26 12:0 a.m.•4 views

Crypt::ScryptKDF 安全漏洞

Crypt::ScryptKDF is a Perl cryptography module developed by MIK’s individual developers. It supports Scrypt-based key derivation and cryptographic hash processing functions. Versions of Crypt::ScryptKDF prior to 0.010 contained security vulnerabilities, which stemmed from the use of insecure rand...

4.8CVSS5.8AI score0.00036EPSS

RedhatCVE•added 2026/05/25 7:43 a.m.•10 views

CVE-2026-8463

A flaw was found in Crypt::Argon2 for Perl. This vulnerability, a heap out-of-bounds read, occurs in the argon2verify function when processing an empty encoded input. An integer underflow causes the software to read beyond the allocated memory, which can lead to a denial of service DoS by crashin...

5.3CVSS5.6AI score0.00041EPSS

Tenable Nessus•added 2026/05/25 12:0 a.m.•4 views

Fedora 45 : perl-Crypt-PasswdMD5 (2026-5f1dfcb5c8)

The remote Fedora 45 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-5f1dfcb5c8 advisory. Automatic update for perl-Crypt-PasswdMD5-1.4.3-1.fc45. Changelog Sat May 23 2026 Paul Howarth - 1.4.3-1 - Update to 1.43 - Replace use of the...