CVE-2026-47373

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Crypt::SaltedHash versions prior to 0.110.0

Description Crypt::SaltedHash for Perl is susceptible to timing attacks because it uses Perl's built-in eq comparison. Discrepancies in timing could be used to guess the underlying hash.

Recommendations Update to version 0.110.0.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-208

Related Identifiers

CVE-2026-47373

OPENSUSE-SU-2026:10836-1

Affected Products

Crypt::Saltedhash

CVE-2026-47373

Weakness Enumeration

Related Identifiers

Affected Products

References · 15