CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-40912 – CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode
https://notcve.org/view.php?id=CVE-2025-40912
11 Jun 2025 — CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode. CryptX embeds the tomcrypt library. The versions of that library in CryptX before 0.065 may be susceptible to CVE-2019-17362. • https://github.com/libtom/libtomcrypt/issues/507 • CWE-1395: Dependency on Vulnerable Third-Party Component •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-40914 – Perl CryptX before version 0.087 contains a dependency that may be susceptible to an integer overflow
https://notcve.org/view.php?id=CVE-2025-40914
11 Jun 2025 — Perl CryptX before version 0.087 contains a dependency that may be susceptible to an integer overflow. CryptX embeds a version of the libtommath library that is susceptible to an integer overflow associated with CVE-2023-36328. • https://github.com/advisories/GHSA-j3xv-6967-cv88 • CWE-1395: Dependency on Vulnerable Third-Party Component •