Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

CVE-2026-57082— Net::BitTorrent versions through 2.0.1 for Perl generate the MSE Diffie-Hellman private key with a non-cryptographic PRNG

AI Predicted 7.5 Difficulty: Moderate EPSS 0.15% · P5

Possible ATT&CK Techniques 1AI

T1557 · Adversary-in-the-Middle

Affected Version Matrix 1

VendorProductVersion RangeStatus
SANKONet::BitTorrent≤ 2.0.1affected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-57082

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Net::BitTorrent versions through 2.0.1 for Perl generate the MSE Diffie-Hellman private key with a non-cryptographic PRNG
Source: NVD (National Vulnerability Database)
Vulnerability Description
Net::BitTorrent versions through 2.0.1 for Perl generate the MSE Diffie-Hellman private key with a non-cryptographic PRNG. The MSE (Message Stream Encryption) handshake derives its 160-bit Diffie-Hellman private key from Perl's rand(), a non-cryptographic drand48-class generator seeded once per process, in KeyExchange.pm. The shared secret and the RC4 keys derived from it (the SHA-1 of "keyA" or "keyB", the shared secret, and the infohash) therefore depend entirely on a predictable PRNG. The same handshake sends, in cleartext, random padding drawn from the same rand() sequence in _random_pad, immediately after the public key and the private-key draw. A passive observer of the handshake recovers the PRNG state from the cleartext padding, reconstructs the private key, computes the shared secret from the peer's public key on the wire, derives the RC4 keys, and decrypts the connection, defeating the passive-observation obfuscation MSE provides.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
使用具有密码学弱点缺陷的PRNG
Source: NVD (National Vulnerability Database)
Vulnerability Title
Sanko Robinson Net::BitTorrent 加密问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Sanko Robinson Net::BitTorrent是Sanko Robinson个人开发者的一个基于现代 Perl(v5.40+)从头重写的高性能 BitTorrent 客户端库,支持 BitTorrent v2、DHT、协议加密等完整功能,且可与任意事件循环集成。 Sanko Robinson Net::BitTorrent 2.0.1及之前版本存在加密问题漏洞,该漏洞源于在KeyExchange.pm中使用非加密PRNG生成MSE Diffie-Hellman私钥,可能导致被动观察者恢复PR
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
SANKONet::BitTorrent 0 ~ 2.0.1 -

II. Public POCs for CVE-2026-57082

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-57082

登录查看更多情报信息。

Vendor Advisories for CVE-2026-57082 (1)

Same Patch Batch · SANKO · 2026-06-30 · 4 CVEs total

CVE-2026-57081Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via deeply
CVE-2026-57079Net::BitTorrent versions through 2.0.1 for Perl write files outside the download directory
CVE-2026-57080Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an unca

IV. Related Vulnerabilities

V. Comments for CVE-2026-57082

No comments yet


Leave a comment