How severe is CVE-2002-20002?

CVE-2002-20002 has a CVSS v3 score of 5.4 (MEDIUM).

CVE-2002-20002

5.4MEDIUM

The Net::EasyTCP package before 0.15 for Perl always uses Perl's builtin rand(), which is not a strong random number generator, for cryptographic keys.

Publicado: 1/2/2025Actualizado: 1/2/2025

Descripción

The Net::EasyTCP package before 0.15 for Perl always uses Perl's builtin rand(), which is not a strong random number generator, for cryptographic keys.

Análisis IAImpulsado por IA

Referencias

https://github.com/briandfoy/cpan-security-advisory/issues/184
https://metacpan.org/release/MNAGUIB/EasyTCP-0.15/view/EasyTCP.pm
https://metacpan.org/release/MNAGUIB/EasyTCP-0.26/changes