Vulnerabilities

CVE-2026-5086

by Fred · 13/04/2026

Crypt::SecretBuffer versions before 0.019 for Perl is suseceptible to timing attacks.

For example, if Crypt::SecretBuffer was used to store and compare plaintext passwords, then discrepencies in timing could be used to guess the secret password.

More information : https://metacpan.org/release/NERDVANA/Crypt-SecretBuffer-0.019/source/Changes

Similar

Tags: Cybersecurity Alert