๐Ÿ” CVE Alert

CVE-2026-46474

UNKNOWN 0.0

Trog::TOTP versions before 1.006 for Perl generate secrets using rand

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

Trog::TOTP versions before 1.006 for Perl generate secrets using rand. Secrets were generated using Perl's built-in rand function, which is predictable and unsuitable for security usage.

CWE CWE-331
Vendor teodesian
Product trog::totp
Published May 15, 2026
Stay Ahead of the Next One

Get instant alerts for teodesian trog::totp

Be the first to know when new unknown vulnerabilities affecting teodesian trog::totp are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

TEODESIAN / Trog::TOTP
0 < 1.006

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
metacpan.org: https://metacpan.org/release/TEODESIAN/Trog-TOTP-1.006/changes metacpan.org: https://metacpan.org/release/TEODESIAN/Trog-TOTP-1.006/diff/TEODESIAN/Trog-TOTP-1.005#lib/Trog/TOTP.pm