CVE-2026-2474 | DDICK Crypt::URandom up to 0.54 on Perl crypt_urandom_getrandom length heap-based overflow

Inserito da Angelo Barbosa | Feb 17, 2026 | CVE

A vulnerability was found in DDICK Crypt::URandom up to 0.54 on Perl. It has been classified as critical. Affected by this vulnerability is the function crypt_urandom_getrandom. This manipulation of the argument length causes heap-based buffer overflow.

This vulnerability is registered as CVE-2026-2474. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is recommended.

CVE-2026-2474 | DDICK Crypt::URandom up to 0.54 on Perl crypt_urandom_getrandom length heap-based overflow

Post correlati

CVE-2023-49257 | Hongdian H8951-4G-ESP prior 2310271149 CGI File permission assignment

CVE-2025-44867 | Tenda W20E 15.11.0.6 formSetNetCheckTools Hostname command injection

CVE-2025-24633 | silverplugins217 Build Private Store for Woocommerce Plugin up to 1.0 on WordPress authorization

CVE-2024-29013 | SonicWall SonicOS up to 7.1.1-7051 SSL-VPN memcpy heap-based overflow (SNWLID-2024-0009)