CVE-2026-47372

CVE-2026-47372: Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts

Vendor Rrwo
Product Crypt::SaltedHash
Weakness CWE-338
Published May 20, 2026
Last update May 21, 2026

CVSS base score

What the vulnerability does

01Description

Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography.

Key dates

02Disclosure timeline

May 20, 2026 CVE published
May 21, 2026 Record updated

Related vulnerabilities

04Related CVE