{"id":"CVE-2025-1860","details":"Data::Entropy for Perl 0.007 and earlier use the rand() function as the default source of entropy, which is not cryptographically secure, for cryptographic functions.","modified":"2026-04-16T04:34:16.910044536Z","published":"2025-03-28T01:15:16Z","related":["openSUSE-SU-2025:0123-1","openSUSE-SU-2025:14960-1"],"references":[{"type":"WEB","url":"https://metacpan.org/release/ZEFRAM/Data-Entropy-0.007/source/lib/Data/Entropy.pm#L80"},{"type":"WEB","url":"https://perldoc.perl.org/functions/rand"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/03/msg00026.html"}],"schema_version":"1.7.5"}