CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1122 matches found

SUSE CVE•added 2026/05/21 1:11 p.m.•6 views

SUSE CVE-2026-47373

Crypt::SaltedHash versions through 0.09 for Perl is susceptible to timing attacks. These versions use Perl's built-in eq comparison. Discrepencies in timing could be used to guess the underlying hash...

7.5CVSS5.8AI score0.00393EPSS

Exploits0References3

EUVD•added 2026/05/21 12:30 a.m.•11 views

EUVD-2026-31198

Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography...

5.8AI score0.00397EPSS

Exploits0References3

OSV•added 2026/05/21 12:0 a.m.•6 views

OPENSUSE-SU-2026:10836-1 perl-Crypt-SaltedHash-0.110.0-1.1 on GA media

These are all security issues fixed in the perl-Crypt-SaltedHash-0.110.0-1.1 package on the GA media of openSUSE Tumbleweed...

9.1CVSS5.8AI score0.00397EPSS

Exploits0References2

Tenable Nessus•added 2026/05/21 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2026-47372

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable...

9.1CVSS5.4AI score0.00397EPSS

Exploits0References2

OSV•added 2026/05/20 10:16 p.m.•7 views

DEBIAN-CVE-2026-47372

Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography...

9.1CVSS5.8AI score0.00397EPSS

Exploits0References1

ATTACKERKB•added 2026/05/20 10:8 p.m.•4 views

CVE-2026-47372

Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography...

5.8AI score0.00397EPSS

Exploits0References3

Cvelist•added 2026/05/20 10:8 p.m.•31 views

CVE-2026-47372 Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts

Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography...

0.00397EPSS

Exploits0References2

Vulnrichment•added 2026/05/20 10:8 p.m.•6 views

CVE-2026-47372 Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts

Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography...

5.8AI score0.00397EPSS

Exploits0References2

Debian CVE•added 2026/05/20 10:8 p.m.•7 views

CVE-2026-47372

Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography...

9.1CVSS5.8AI score0.00397EPSS

Exploits0

CVE•added 2026/05/20 10:8 p.m.•24 views

CVE-2026-47372

CVE-2026-47372 affects Crypt::SaltedHash for Perl up to version 0.09, where salts are generated using the built-in rand function. This produces insecure, predictable randomness, compromising cryptographic strength. Multiple sources (SUSE, ENISA EUVD, NVD, Debian tracker, CVE lists) describe the s...

9.1CVSS5.8AI score0.00397EPSS

Exploits0References3

UbuntuCve•added 2026/05/20 9:16 p.m.•7 views

CVE-2026-47373

7.5CVSS5.8AI score0.00393EPSS

Exploits0References5

OSV•added 2026/05/20 9:16 p.m.•3 views

UBUNTU-CVE-2026-47373

7.5CVSS5.8AI score0.00393EPSS

Exploits0References6

EUVD•added 2026/05/20 8:25 p.m.•11 views

EUVD-2026-31196

5.8AI score0.00393EPSS

Exploits0References2

ATTACKERKB•added 2026/05/20 8:25 p.m.•8 views

CVE-2026-47373

5.8AI score0.00393EPSS

Exploits0References3

CVE•added 2026/05/20 8:25 p.m.•15 views

CVE-2026-47373

CVE-2026-47373 affects Crypt::SaltedHash for Perl (versions up to 0.09). The issue arises from using Perl’s eq for hash comparison, enabling timing-based leakage that could help an attacker guess the underlying hash. The risk is described as a timing attack without explicit exploitation details i...

7.5CVSS5.8AI score0.00393EPSS

Exploits0References3

Cvelist•added 2026/05/20 8:25 p.m.•28 views

CVE-2026-47373 Crypt::SaltedHash versions through 0.09 for Perl is susceptible to timing attacks

0.00393EPSS

Exploits0References2

Debian CVE•added 2026/05/20 8:25 p.m.•6 views

CVE-2026-47373

7.5CVSS5.8AI score0.00393EPSS

Exploits0

Vulnrichment•added 2026/05/20 8:25 p.m.•6 views

CVE-2026-47373 Crypt::SaltedHash versions through 0.09 for Perl is susceptible to timing attacks

5.8AI score0.00393EPSS

Exploits0References2

ATTACKERKB•added 2026/05/20 9:17 a.m.•10 views

CVE-2026-32792

NLnet Labs Unbound 1.6.2 up to and including version 1.25.0 has a denial of service vulnerability when compiled with DNSCrypt support '--enable-dnscrypt'. A bad DNSCrypt query could underflow Unbound's DNSCrypt packet reading procedure that may lead to heap overflow. A malicious actor can exploit...

8.2CVSS6AI score0.00337EPSS

Exploits0References2Affected Software1

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: crashdump: Do not log the bytes of the dm-crypt key in readkeyfromuserkeying. When debug logging is enabled, readkeyfromuserkeying logs the first 8 bytes of the key payload, thereby partially exposing the dm-crypt key. Stop loggi...

5.5CVSS5.7AI score0.00121EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by