CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2 days ago•3 views

Fedora 44 : perl-Catalyst-Plugin-Authentication (2026-26666575ae)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-26666575ae advisory. Catalyst::Plugin::Authentication versions through 0.10024 for Perl is susceptible to timing attacks since these versions use Perl's built-in eq comparison...

5.1CVSS5.8AI score0.00007EPSS

EUVD•added 2026/05/22 12:31 a.m.•6 views

EUVD-2026-31353

Catalyst::Plugin::Authentication versions through 0.10024 for Perl is susceptible to timing attacks. These versions use Perl's built-in eq comparison. Discrepencies in timing could be used to guess the underlying hash or password...

5.8AI score0.00007EPSS

Vulnrichment•added 2026/05/21 9:7 p.m.•2 views

CVE-2026-5091 Catalyst::Plugin::Authentication versions through 0.10024 for Perl is susceptible to timing attacks

5.8AI score0.00007EPSS

ATTACKERKB•added 2026/05/21 9:7 p.m.•2 views

CVE-2026-5091

5.8AI score0.00007EPSS

Vulnrichment•added 2026/05/20 8:25 p.m.•3 views

CVE-2026-47373 Crypt::SaltedHash versions through 0.09 for Perl is susceptible to timing attacks

Crypt::SaltedHash versions through 0.09 for Perl is susceptible to timing attacks. These versions use Perl's built-in eq comparison. Discrepencies in timing could be used to guess the underlying hash...

5.8AI score0.00038EPSS

CVE•added 2026/05/20 8:25 p.m.•10 views

CVE-2026-47373

CVE-2026-47373 affects Crypt::SaltedHash for Perl (versions up to 0.09). The issue arises from using Perl’s eq for hash comparison, enabling timing-based leakage that could help an attacker guess the underlying hash. The risk is described as a timing attack without explicit exploitation details i...

7.5CVSS5.8AI score0.00038EPSS

Positive Technologies•added 2026/05/20 12:0 a.m.•6 views

PT-2026-42265

Name of the Vulnerable Software and Affected Versions Crypt::SaltedHash versions prior to 0.110.0 Description Crypt::SaltedHash for Perl is susceptible to timing attacks because it uses Perl's built-in eq comparison. Discrepancies in timing could be used to guess the underlying hash...

7.5CVSS5.8AI score0.00038EPSS

Exploits0References7

SUSE CVE•added 2026/05/13 3:34 a.m.•1 views

SUSE CVE-2026-43384

In the Linux kernel, the following vulnerability has been resolved: net/tcp-ao: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

SUSE CVE•added 2026/05/11 2:13 p.m.•4 views

SUSE CVE-2026-43383

In the Linux kernel, the following vulnerability has been resolved: net/tcp-md5: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

9.4CVSS5.7AI score0.0007EPSS

EUVD•added 2026/05/08 3:31 p.m.•6 views

EUVD-2026-28689

5.7AI score0.0007EPSS

Exploits0References8

EUVD•added 2026/05/08 3:31 p.m.•6 views

EUVD-2026-28690

5.7AI score0.00057EPSS

Exploits0References5

NVD•added 2026/05/08 3:16 p.m.•1 views

CVE-2026-43383

9.4CVSS0.0007EPSS

Exploits0References7

UbuntuCve•added 2026/05/08 3:16 p.m.•4 views

CVE-2026-43384

OSV•added 2026/05/08 3:16 p.m.•3 views

Exploits0References6

UBUNTU-CVE-2026-43383

9.4CVSS5.7AI score0.0007EPSS

Exploits0References10

OSV•added 2026/05/08 3:16 p.m.•4 views

UBUNTU-CVE-2026-43384

UbuntuCve•added 2026/05/08 3:16 p.m.•7 views

Exploits0References7

CVE-2026-43383

9.4CVSS5.7AI score0.0007EPSS

Exploits0References9

CVE•added 2026/05/08 2:21 p.m.•8 views

CVE-2026-43384

The CVE-2026-43384 issue concerns the Linux kernel TCP Authentication Option (TCP-AO) where MACs were compared without constant-time handling. The connected documents confirm a fix was applied to make MAC comparisons constant-time, mitigating timing-attack leakage of sensitive information. The vu...