Medium severity5.4NVD Advisory· Published Jan 2, 2025· Updated Apr 15, 2026

CVE-2002-20002

Description

The Net::EasyTCP package before 0.15 for Perl always uses Perl's builtin rand(), which is not a strong random number generator, for cryptographic keys.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/briandfoy/cpan-security-advisory/issues/184nvd
metacpan.org/release/MNAGUIB/EasyTCP-0.15/view/EasyTCP.pmnvd
metacpan.org/release/MNAGUIB/EasyTCP-0.26/changesnvd

News mentions

No linked articles in our index yet.

cvss	0.351
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000