CVE-2024-58135 | SRI Mojolicious up to 9.39 on Perl HMAC Session Secrets rand weak prng

Inserito da Angelo Barbosa | Mag 3, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in SRI Mojolicious up to 9.39 on Perl. This issue affects the function rand of the component HMAC Session Secrets Handler. The manipulation leads to cryptographically weak prng.

The identification of this vulnerability is CVE-2024-58135. The attack can only be done within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-58135 | SRI Mojolicious up to 9.39 on Perl HMAC Session Secrets rand weak prng

Post correlati

CVE-2024-20134 | MediaTek MT8798 Ril out-of-bounds write (MSV-1866 / ALPS09154589)

CVE-2023-35916 | Automattic WooPayments Plugin up to 5.9.0 on WordPress authorization

CVE-2024-50579 | JetBrains YouTrack up to 2024.3.47197 Link cross site scripting

CVE-2023-41884 | ZoneMinder up to 1.36.33 WWW/AJAX/watch.php sql injection