CVE-2025-40918

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Authen::SASL::Perl::DIGEST MD5 versions 2.04 through 2.1800

Description The cnonce (client nonce) is generated insecurely from an MD5 hash of the PID, the epoch time, and the built-in rand function. The PID originates from a limited set of numbers, and the epoch time may be predictable. The rand function is unsuitable for cryptographic purposes. According to RFC 2831, the cnonce should contain at least 64 bits of entropy to prevent chosen plaintext attacks and ensure mutual authentication.

Recommendations Versions prior to 2.1800 are affected. Update to a version later than 2.1800.

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-340CWE-338

Related Identifiers

AZL-65541

BDU:2025-10918

CVE-2025-40918

MGASA-2025-0285

OESA-2026-2422

OESA-2026-2423

OPENSUSE-SU-2025:15385-1

OPENSUSE-SU-2026:20480-1

SUSE-SU-2025:03087-1

SUSE-SU-2025:03088-1

SUSE-SU-2025_03087-1

SUSE-SU-2025_03088-1

SUSE-SU-2026:21145-1

Affected Products

Authen::Sasl::Perl::Digest Md5

Debian

Red Os

Suse

CVE-2025-40918

Weakness Enumeration

Related Identifiers

Affected Products

References · 46