CVE-2025-27551 Information

Description

DBIx::Class::EncodedColumn use the rand() function which is not cryptographically secure to salt password hashes.

This vulnerability is associated with program files lib/DBIx/Class/EncodedColumn/Digest.pm.

This issue affects DBIx::Class::EncodedColumn until 0.00032.

Reference

https://metacpan.org/release/WREIS/DBIx-Class-EncodedColumn-0.00032/changes https://security.metacpan.org/docs/guides/random-data-for-security.html