Home

Description

CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode. CryptX embeds the tomcrypt library. The versions of that library in CryptX before 0.065 may be susceptible to CVE-2019-17362.

PUBLISHED Reserved 2025-04-16 | Published 2025-06-11 | Updated 2025-06-11 | Assigner CPANSec

Problem types

CWE-1395 Dependency on Vulnerable Third-Party Component

Product status

Default status
unaffected

0.002 (custom) before 0.065
affected

References

github.com/libtom/libtomcrypt/issues/507

cve.org (CVE-2025-40912)

nvd.nist.gov (CVE-2025-40912)

Download JSON