Critical severity9.8NVD Advisory· Published Mar 18, 2024· Updated Apr 15, 2026
CVE-2018-25099
CVE-2018-25099
Description
In the CryptX module before 0.062 for Perl, gcm_decrypt_verify() and chacha20poly1305_decrypt_verify() do not verify the tag.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- osv-coords3 versionspkg:rpm/opensuse/perl-CryptX&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/perl-CryptX&distro=openSUSE%20Tumbleweedpkg:rpm/suse/perl-CryptX&distro=SUSE%20Package%20Hub%2015%20SP5
< 0.80.0-bp155.2.3.1+ 2 more
- (no CPE)range: < 0.80.0-bp155.2.3.1
- (no CPE)range: < 0.80.0-3.1
- (no CPE)range: < 0.80.0-bp155.2.3.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.