Description

Crypt::SecretBuffer versions before 0.019 for Perl is suseceptible to timing attacks. For example, if Crypt::SecretBuffer was used to store and compare plaintext passwords, then discrepencies in timing could be used to guess the secret password.

INFO

Published Date :

2026-04-13T22:54:53.724Z

Last Modified :

2026-04-14T01:34:38.681Z

Source :

CPANSec
AFFECTED PRODUCTS

The following products are affected by CVE-2026-5086 vulnerability.

Vendors Products
Nerdvana
  • Crypt::secretbuffer
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-5086.

URL Resource
https://metacpan.org/release/NERDVANA/Crypt-SecretBuffer-0.019/source/Changes cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System