Medium severity5.1NVD Advisory· Published May 21, 2026· Updated May 22, 2026
CVE-2026-5091
CVE-2026-5091
Description
Catalyst::Plugin::Authentication versions through 0.10024 for Perl is susceptible to timing attacks.
These versions use Perl's built-in eq comparison. Discrepencies in timing could be used to guess the underlying hash or password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <0.10_025
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.