CVE-2024-58041 in Smolder정보

요약

\~에 의해 MITRE • 2026. 02. 24.

Smolder versions through 1.51 for Perl uses insecure rand() function for cryptographic functions.

Smolder 1.51 and earlier for Perl uses the rand() function as the default source of entropy, which is not cryptographically secure, for cryptographic functions.

Specifically Smolder::DB::Developer uses the Data::Random library which specifically states that it is "Useful mostly for test programs". Data::Random uses the rand() function.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

CPANSec

예약하다

2025. 03. 26.

공개

2026. 02. 24.

모더레이션

수락

항목

VDB-347514

CPE

준비됨

CWE

CWE-338 (확인됨)

CVSS

9.1 (CISA-ADP)

EPSS

0.00045

KEV

아니요

활동

매우 낮음

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2024-58041
NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-58041
CVE Details	https://www.cvedetails.com/cve/CVE-2024-58041/

◂ 이전 개요 다음 ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!