CNNVD-202509-2717 Information
Sep 17, 2025
cve
CNNVD ID
CNNVD-202509-2717
Related CVE
- CNNVD Published: 2025-09-17
Description (Chinese)
MetaCPAN Apache::AuthAny::Cookie是MetaCPAN基金会的一个Perl认证模块。 MetaCPAN Apache::AuthAny::Cookie 0.201及之前版本存在安全漏洞,该漏洞源于使用MD5哈希和rand函数生成不安全的会话ID,可能导致会话劫持。
Description (English)
MetaCPAN Apache: :Authany: :Cookie is a Perl certification module of the MetaCPAN Foundation. MetaCPAN Apache: :Authany: :Cookie 0.201 and previous versions have a security loophole, which stems from the use of MD5 Hashi and Rand functions to generate unsafe session ID, which can lead to the hijacking of sessions.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
meterN
Published
2025-09-17
Last Modified
2026-02-24
References
https://metacpan.org/release/KGOLDOV/Apache2-AuthAny-0.201/source/lib/Apache2/AuthAny/Cookie.pm
Share on: