🟠 CVE-2026-11702

CVSS 评分: 7.5(高危) | 状态: Deferred | 发布时间: 2026-06-26

漏洞描述

Bytes::Random::Secure::Tiny versions through 1.011 for Perl share internal state across forked processes.

When an object is initialised before forking, then the internal state for the PRNG is shared across processes and identical random streams will be produced.

Secrets generated in multiprocess applications are predictable across processes.

漏洞详情

字段
CVE ID CVE-2026-11702
CVSS 评分 7.5(高危)
CVSS 向量 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE CWE-335
发布时间 2026-06-26
最后更新 2026-06-26
状态 Deferred
数据来源 9b29abf9-4ab0-4765-b253-1875cd9b441e

参考链接

🤖 本文由 CVE 安全快讯机器人自动生成
数据来源: NVD (National Vulnerability Database) | 获取时间: 2026-06-27 03:07