How severe is CVE-2002-20002?

CVE-2002-20002 has a CVSS v3 score of 5.4 (MEDIUM).

CVE-2002-20002

5.4MEDIUM

The Net::EasyTCP package before 0.15 for Perl always uses Perl's builtin rand(), which is not a strong random number generator, for cryptographic keys.

发布于: 1/2/2025更新于: 1/2/2025

描述

The Net::EasyTCP package before 0.15 for Perl always uses Perl's builtin rand(), which is not a strong random number generator, for cryptographic keys.

AI分析AI驱动

参考资料

https://github.com/briandfoy/cpan-security-advisory/issues/184
https://metacpan.org/release/MNAGUIB/EasyTCP-0.15/view/EasyTCP.pm
https://metacpan.org/release/MNAGUIB/EasyTCP-0.26/changes