CVE-2025-40912

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-40912

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40912.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-40912

Downstream

DEBIAN-CVE-2025-40912

UBUNTU-CVE-2025-40912

USN-8128-1

Published

2025-06-11T17:48:39.344Z

Modified

2026-06-18T03:56:27.998157273Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode

Details

CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode.

CryptX embeds the tomcrypt library. The versions of that library in CryptX before 0.065 may be susceptible to CVE-2019-17362.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40912.json",
    "cwe_ids": [
        "CWE-1395"
    ],
    "cna_assigner": "CPANSec"
}

References

Affected packages

Git / github.com/dcit/perl-cryptx

Affected ranges

Type

GIT

Repo

https://github.com/dcit/perl-cryptx

Events

Introduced

Fixed

23f2acc4257d59ce136d559cb005d61420aae9e4

Database specific

{
    "source": "AFFECTED_FIELD",
    "extracted_events": [
        {
            "introduced": "0.002"
        },
        {
            "fixed": "0.065"
        }
    ]
}

Affected versions

v0.*

v0.022

v0.023

v0.024

v0.025

v0.026

v0.029

v0.030

v0.031

v0.032

v0.033

v0.034

v0.035

v0.036

v0.037

v0.038

v0.039

v0.040

v0.041

v0.042

v0.043

v0.044

v0.045

v0.046

v0.047

v0.048

v0.049

v0.050

v0.051

v0.052

v0.053

v0.054

v0.055

v0.056

v0.057

v0.058

v0.059

v0.060

v0.061

v0.062

v0.063

v0.064

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40912.json"