High severity7.5NVD Advisory· Published May 8, 2026· Updated May 26, 2026
CVE-2026-6659
CVE-2026-6659
Description
Crypt::PasswdMD5 versions through 1.42 for Perl generates insecure random values for salts.
The built-in rand function is predictable, and unsuitable for cryptography.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
5- www.openwall.com/lists/oss-security/2026/05/08/17nvd
- github.com/ronsavage/Crypt-PasswdMD5/commit/a2f821637db0296082297aa4b02254ab08f0dc5e.patchnvd
- github.com/ronsavage/Crypt-PasswdMD5/pull/3nvd
- metacpan.org/release/RSAVAGE/Crypt-PasswdMD5-1.42/source/lib/Crypt/PasswdMD5.pmnvd
- metacpan.org/release/RSAVAGE/Crypt-PasswdMD5-1.43/changesnvd
News mentions
0No linked articles in our index yet.