Critical severity9.1NVD Advisory· Published May 20, 2026· Updated May 21, 2026
CVE-2026-47372
CVE-2026-47372
Description
Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts.
These versions use the built-in rand function, which is predictable and unsuitable for cryptography.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- osv-coords3 versionspkg:rpm/opensuse/perl-Crypt-SaltedHash&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/perl-Crypt-SaltedHash&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/perl-Crypt-SysRandom&distro=openSUSE%20Leap%2016.0
< 0.110.0-bp160.1.1+ 2 more
- (no CPE)range: < 0.110.0-bp160.1.1
- (no CPE)range: < 0.110.0-1.1
- (no CPE)range: < 0.7.0-bp160.1.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.