Cpan · Authen::Totp · CVE-2026-46473
**Name of the Vulnerable Software and Affected Versions**
Authen::TOTP versions prior to 0.1.1
**Description**
Secrets are generated using the built-in `rand()` function in Perl, which is predictable and unsuitable for security purposes.
**Recommendations**
Update to version 0.1.1 or later.