Nerdvana: Security Vulnerabilities
Crypt::SecretBuffer versions before 0.019 for Perl is suseceptible to timing attacks.
For example, if Crypt::SecretBuffer was used to store and compare plaintext passwords, then discrepencies in timing could be used to guess the secret password.
CVSS Score
7.5
EPSS Score
0.004
Published
2026-04-13