CVE-2026-6146
UNKNOWN
NVD
CVSS Score
0
Severity
UNKNOWN
Published
May 11, 2026
Vendor
unknown
Description
Amazon::Credentials versions through 1.2.0 for Perl uses rand to generate encryption keys. Amazon::Credentials stores credentials in an obfuscated form to prevent access to the secrets from a data dump of the object. Before version 1.3.0, the secrets were encrypted using a 64-bit key that was generated using the built-in rand function, which is predictable and unsuitable for cryptography.