{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-15604", "assignerOrgId": "9b29abf9-4ab0-4765-b253-1875cd9b441e", "state": "PUBLISHED", "assignerShortName": "CPANSec", "dateReserved": "2026-03-08T23:56:33.670Z", "datePublished": "2026-03-28T18:43:56.318Z", "dateUpdated": "2026-04-01T14:13:01.746Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://cpan.org/modules", "defaultStatus": "unaffected", "packageName": "Amon2", "product": "Amon2", "programFiles": ["lib/Amon2/Util.pm"], "programRoutines": [{"name": "Amon2::Util::random_string"}], "repo": "https://github.com/tokuhirom/Amon", "vendor": "TOKUHIROM", "versions": [{"lessThan": "6.17", "status": "affected", "version": "0", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "Amon2 versions before 6.17 for Perl use an insecure random_string implementation for security functions.\n\nIn versions 6.06 through 6.16, the random_string function will attempt to read bytes from the /dev/urandom device, but if that is unavailable then it generates bytes by concatenating a SHA-1 hash seeded with the built-in rand() function, the PID, and the high resolution epoch time. The PID will come from a small set of numbers, and the epoch time may be guessed, if it is not leaked from the HTTP Date header. The built-in rand function is unsuitable for cryptographic usage.\n\nBefore version 6.06, there was no fallback when /dev/urandom was not available.\n\nBefore version 6.04, the random_string function used the built-in rand() function to generate a mixed-case alphanumeric string.\n\nThis function may be used for generating session ids, generating secrets for signing or encrypting cookie session data and generating tokens used for Cross Site Request Forgery (CSRF) protection."}], "impacts": [{"capecId": "CAPEC-62", "descriptions": [{"lang": "en", "value": "CAPEC-62 Cross Site Request Forgery"}]}, {"capecId": "CAPEC-115", "descriptions": [{"lang": "en", "value": "CAPEC-115 Authentication Bypass"}]}, {"capecId": "CAPEC-586", "descriptions": [{"lang": "en", "value": "CAPEC-586 Object Injection"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-340", "description": "CWE-340 Generation of Predictable Numbers or Identifiers", "lang": "en", "type": "CWE"}]}, {"descriptions": [{"cweId": "CWE-338", "description": "CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "9b29abf9-4ab0-4765-b253-1875cd9b441e", "shortName": "CPANSec", "dateUpdated": "2026-03-28T18:43:56.318Z"}, "references": [{"url": "https://metacpan.org/release/TOKUHIROM/Amon2-6.17/diff/TOKUHIROM/Amon2-6.16#lib/Amon2/Util.pm"}, {"tags": ["release-notes"], "url": "https://metacpan.org/release/TOKUHIROM/Amon2-6.17/changes"}, {"tags": ["issue-tracking"], "url": "https://github.com/tokuhirom/Amon/pull/135"}, {"tags": ["technical-description"], "url": "https://security.metacpan.org/docs/guides/random-data-for-security.html"}], "solutions": [{"lang": "en", "value": "Upgrade to Amon2 version 6.17 or later."}], "source": {"discovery": "UNKNOWN"}, "title": "Amon2 versions before 6.17 for Perl use an insecure random_string implementation for security functions", "x_generator": {"engine": "cpansec-cna-tool 0.1"}}, "adp": [{"title": "CVE Program Container", "references": [{"url": "http://www.openwall.com/lists/oss-security/2026/03/28/4"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2026-03-28T20:06:46.387Z"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-04-01T14:12:25.901323Z", "id": "CVE-2025-15604", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-01T14:13:01.746Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "http://www.openwall.com/lists/oss-security/2026/03/28/4"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2026-03-28T20:06:46.387Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-15604", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-01T14:12:25.901323Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-01T14:12:56.077Z"}}], "cna": {"title": "Amon2 versions before 6.17 for Perl use an insecure random_string implementation for security functions", "source": {"discovery": "UNKNOWN"}, "impacts": [{"capecId": "CAPEC-62", "descriptions": [{"lang": "en", "value": "CAPEC-62 Cross Site Request Forgery"}]}, {"capecId": "CAPEC-115", "descriptions": [{"lang": "en", "value": "CAPEC-115 Authentication Bypass"}]}, {"capecId": "CAPEC-586", "descriptions": [{"lang": "en", "value": "CAPEC-586 Object Injection"}]}], "affected": [{"repo": "https://github.com/tokuhirom/Amon", "vendor": "TOKUHIROM", "product": "Amon2", "versions": [{"status": "affected", "version": "0", "lessThan": "6.17", "versionType": "custom"}], "packageName": "Amon2", "programFiles": ["lib/Amon2/Util.pm"], "collectionURL": "https://cpan.org/modules", "defaultStatus": "unaffected", "programRoutines": [{"name": "Amon2::Util::random_string"}]}], "solutions": [{"lang": "en", "value": "Upgrade to Amon2 version 6.17 or later."}], "references": [{"url": "https://metacpan.org/release/TOKUHIROM/Amon2-6.17/diff/TOKUHIROM/Amon2-6.16#lib/Amon2/Util.pm"}, {"url": "https://metacpan.org/release/TOKUHIROM/Amon2-6.17/changes", "tags": ["release-notes"]}, {"url": "https://github.com/tokuhirom/Amon/pull/135", "tags": ["issue-tracking"]}, {"url": "https://security.metacpan.org/docs/guides/random-data-for-security.html", "tags": ["technical-description"]}], "x_generator": {"engine": "cpansec-cna-tool 0.1"}, "descriptions": [{"lang": "en", "value": "Amon2 versions before 6.17 for Perl use an insecure random_string implementation for security functions.\n\nIn versions 6.06 through 6.16, the random_string function will attempt to read bytes from the /dev/urandom device, but if that is unavailable then it generates bytes by concatenating a SHA-1 hash seeded with the built-in rand() function, the PID, and the high resolution epoch time. The PID will come from a small set of numbers, and the epoch time may be guessed, if it is not leaked from the HTTP Date header. The built-in rand function is unsuitable for cryptographic usage.\n\nBefore version 6.06, there was no fallback when /dev/urandom was not available.\n\nBefore version 6.04, the random_string function used the built-in rand() function to generate a mixed-case alphanumeric string.\n\nThis function may be used for generating session ids, generating secrets for signing or encrypting cookie session data and generating tokens used for Cross Site Request Forgery (CSRF) protection."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-340", "description": "CWE-340 Generation of Predictable Numbers or Identifiers"}]}, {"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-338", "description": "CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator"}]}], "providerMetadata": {"orgId": "9b29abf9-4ab0-4765-b253-1875cd9b441e", "shortName": "CPANSec", "dateUpdated": "2026-03-28T18:43:56.318Z"}}}, "cveMetadata": {"cveId": "CVE-2025-15604", "state": "PUBLISHED", "dateUpdated": "2026-04-01T14:13:01.746Z", "dateReserved": "2026-03-08T23:56:33.670Z", "assignerOrgId": "9b29abf9-4ab0-4765-b253-1875cd9b441e", "datePublished": "2026-03-28T18:43:56.318Z", "assignerShortName": "CPANSec"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:tokuhirom:amon2:*:*:*:*:*:perl:*:*", "matchCriteriaId": "0920218A-C374-46FB-A8C8-FC92ACFB73DB", "versionEndExcluding": "6.17", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Amon2 versions before 6.17 for Perl use an insecure random_string implementation for security functions.\n\nIn versions 6.06 through 6.16, the random_string function will attempt to read bytes from the /dev/urandom device, but if that is unavailable then it generates bytes by concatenating a SHA-1 hash seeded with the built-in rand() function, the PID, and the high resolution epoch time. The PID will come from a small set of numbers, and the epoch time may be guessed, if it is not leaked from the HTTP Date header. The built-in rand function is unsuitable for cryptographic usage.\n\nBefore version 6.06, there was no fallback when /dev/urandom was not available.\n\nBefore version 6.04, the random_string function used the built-in rand() function to generate a mixed-case alphanumeric string.\n\nThis function may be used for generating session ids, generating secrets for signing or encrypting cookie session data and generating tokens used for Cross Site Request Forgery (CSRF) protection."}, {"lang": "es", "value": "Las versiones de Amon2 anteriores a la 6.17 para Perl utilizan una implementaci\u00f3n insegura de random_string para funciones de seguridad.\n\nEn las versiones 6.06 a la 6.16, la funci\u00f3n random_string intentar\u00e1 leer bytes del dispositivo /dev/urandom, pero si este no est\u00e1 disponible, entonces genera bytes concatenando un hash SHA-1 inicializado con la funci\u00f3n rand() incorporada, el PID y el tiempo de \u00e9poca de alta resoluci\u00f3n. El PID provendr\u00e1 de un peque\u00f1o conjunto de n\u00fameros, y el tiempo de \u00e9poca puede ser adivinado, si no se filtra del encabezado HTTP Date. La funci\u00f3n rand incorporada no es adecuada para uso criptogr\u00e1fico.\n\nAntes de la versi\u00f3n 6.06, no hab\u00eda un mecanismo de respaldo cuando /dev/urandom no estaba disponible.\n\nAntes de la versi\u00f3n 6.04, la funci\u00f3n random_string utilizaba la funci\u00f3n rand() incorporada para generar una cadena alfanum\u00e9rica de may\u00fasculas y min\u00fasculas.\n\nEsta funci\u00f3n puede ser utilizada para generar IDs de sesi\u00f3n, generar secretos para firmar o cifrar datos de sesi\u00f3n de cookie y generar tokens utilizados para la protecci\u00f3n contra la falsificaci\u00f3n de solicitudes entre sitios (CSRF)."}], "id": "CVE-2025-15604", "lastModified": "2026-04-01T15:16:23.170", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-03-28T19:16:53.387", "references": [{"source": "9b29abf9-4ab0-4765-b253-1875cd9b441e", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/tokuhirom/Amon/pull/135"}, {"source": "9b29abf9-4ab0-4765-b253-1875cd9b441e", "tags": ["Product"], "url": "https://metacpan.org/release/TOKUHIROM/Amon2-6.17/changes"}, {"source": "9b29abf9-4ab0-4765-b253-1875cd9b441e", "tags": ["Product"], "url": "https://metacpan.org/release/TOKUHIROM/Amon2-6.17/diff/TOKUHIROM/Amon2-6.16#lib/Amon2/Util.pm"}, {"source": "9b29abf9-4ab0-4765-b253-1875cd9b441e", "tags": ["Third Party Advisory"], "url": "https://security.metacpan.org/docs/guides/random-data-for-security.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2026/03/28/4"}], "sourceIdentifier": "9b29abf9-4ab0-4765-b253-1875cd9b441e", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-338"}, {"lang": "en", "value": "CWE-340"}], "source": "9b29abf9-4ab0-4765-b253-1875cd9b441e", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,6.17)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Amon2", "source": "cna", "vendor": "TOKUHIROM"}, "product": "amon2", "vendor": "tokuhirom"}], "analysis": {"en": {"generated_at": "2026-03-28T20:21:03.728550+00:00", "value": {"mitigation_remediation": ["Upgrade to Amon2 version 6.17 or later"], "summary": {"action": "Immediate Patch", "impact": "Weak cryptographic randomness enabling session hijack or token forgery"}, "threat_synthesis": {"affected_systems": "The vulnerability affects all releases of the TOKUHIROM Amon2 framework before version 6.17. Applications built on these versions that depend on random_string for session keys, authentication tokens, or CSRF protection are at risk.", "description_and_impact": "Amon2 before 6.17 uses an insecure random_string function. When /dev/urandom is unavailable, it falls back to a SHA-1 hash seeded with Perl\u2019s rand(), the process ID and the high\u2011resolution epoch time. The rand function is not cryptographically secure, and the PID and time values are predictable or guessable, especially if the HTTP Date header leaks the time. The function is commonly used to create session identifiers, signed-or-encrypted cookie data, and CSRF tokens. Consequently, an attacker who can predict or reproduce these values may impersonate users, alter session state, or forge cross\u2011site request forgery protections.", "risk_and_exploitability": "The CVSS score is not provided, but the vulnerability exposes critical authentication and CSRF mechanisms, making the risk high if the application is exposed to the Internet. No exploit probability data is available, and the vulnerability is not listed in CISA\u2019s known exploited catalog. Potential attackers could target web applications running Amon2 by observing or manipulating random_string outputs, especially when /dev/urandom is disabled or unavailable."}}}}, "created": "2026-03-29T20:32:02.747840+00:00", "updated": "2026-03-30T06:58:55.806213+00:00", "vendors": ["tokuhirom", "tokuhirom$PRODUCT$amon2"]}