Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Crypt::CBC versions between 1.21 and 3.05 for Perl may use insecure rand() function for cryptographic functions
Vulnerability Description
Crypt::CBC versions between 1.21 and 3.05 for Perl may use the rand() function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. This issue affects operating systems where "/dev/urandom'" is unavailable. In that case, Crypt::CBC will fallback to use the insecure rand() function.
CVSS Information
N/A
Vulnerability Type
使用具有密码学弱点缺陷的PRNG
Vulnerability Title
MetaCPAN Crypt::CBC 安全漏洞
Vulnerability Description
MetaCPAN Crypt::CBC是MetaCPAN基金会的一个组件。 MetaCPAN Crypt::CBC 1.21至3.04版本存在安全漏洞,该漏洞源于默认使用不安全的rand函数作为熵源。
CVSS Information
N/A
Vulnerability Type
N/A