How severe is CVE-2002-20002?

CVE-2002-20002 has a CVSS v3 score of 5.4 (MEDIUM).

CVE-2002-20002

5.4MEDIUM

The Net::EasyTCP package before 0.15 for Perl always uses Perl's builtin rand(), which is not a strong random number generator, for cryptographic keys.

Published: 1/2/2025Updated: 1/2/2025

Description

The Net::EasyTCP package before 0.15 for Perl always uses Perl's builtin rand(), which is not a strong random number generator, for cryptographic keys.

AI AnalysisPowered by AI

References

https://github.com/briandfoy/cpan-security-advisory/issues/184
https://metacpan.org/release/MNAGUIB/EasyTCP-0.15/view/EasyTCP.pm
https://metacpan.org/release/MNAGUIB/EasyTCP-0.26/changes