Crypt::PBKDF2

CVEs (1)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2026-9638	Perl Foundation Crypt::PBKDF2	Hig	0.49	7.5	—		Jun 12, 2026	Crypt::PBKDF2 versions before 0.261630 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography.

CVE-2026-9638HigJun 12, 2026
Perl Foundation
Crypt::PBKDF2
risk 0.49cvss 7.5epss —
Crypt::PBKDF2 versions before 0.261630 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography.