Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
perl vulnerabilities and exploits
(subscribe to this query)
3.6
CVSSv2
CVE-2020-14393
A buffer overflow was found in perl-DBI < 1.643 in DBI.xs. A local attacker who is able to supply a string longer than 300 characters could cause an out-of-bounds write, affecting the availability of the service or integrity of data.
Perl Database Interface
Opensuse Leap 15.2
Debian Debian Linux 9.0
Fedoraproject Fedora 31
2.1
CVSSv2
CVE-2020-14392
An untrusted pointer dereference flaw was found in Perl-DBI < 1.643. A local attacker who is able to manipulate calls to dbd_db_login6_sv() could cause memory corruption, affecting the service's availability.
Perl Database Interface
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Opensuse Leap 15.1
Opensuse Leap 15.2
Fedoraproject Fedora 31
Debian Debian Linux 9.0
3.6
CVSSv2
CVE-2014-10401
An issue exists in the DBI module prior to 1.632 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute.
Perl Dbi
5
CVSSv2
CVE-2013-7490
An issue exists in the DBI module prior to 1.632 for Perl. Using many arguments to methods for Callbacks may lead to memory corruption.
Perl Dbi
Canonical Ubuntu Linux 14.04
5
CVSSv2
CVE-2013-7491
An issue exists in the DBI module prior to 1.628 for Perl. Stack corruption occurs when a user-defined function requires a non-trivial amount of memory and the Perl stack gets reallocated.
Perl Dbi
5
CVSSv2
CVE-2020-17478
ECDSA/EC/Point.pm in Crypt::Perl prior to 0.33 does not properly consider timing attacks against the EC point multiplication algorithm.
P5-crypt-perl Project P5-crypt-perl
1 Github repository
6.8
CVSSv2
CVE-2020-13895
Crypt::Perl::ECDSA in the Crypt::Perl (aka p5-Crypt-Perl) module prior to 0.32 for Perl fails to verify correct ECDSA signatures when r and s are small and when s = 1. This happens when using the curve secp256r1 (prime256v1). This could conceivably have a security-relevant impact...
P5-crypt-perl Project P5-crypt-perl
1 Github repository
5
CVSSv2
CVE-2020-12723
regcomp.c in Perl prior to 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
Perl Perl
Netapp Snap Creator Framework -
Netapp Oncommand Workflow Automation -
Fedoraproject Fedora 31
Opensuse Leap 15.1
Oracle Communications Eagle Lnp Application Processor 10.1
Oracle Communications Eagle Lnp Application Processor 10.2
Oracle Sd-wan Edge 9.0
Oracle Sd-wan Edge 8.2
Oracle Enterprise Manager Base Platform 13.4.0.0
Oracle Communications Billing And Revenue Management 12.0.0.3.0
Oracle Communications Offline Mediation Controller 12.0.0.3.0
Oracle Communications Billing And Revenue Management 12.0.0.2.0
Oracle Communications Diameter Signaling Router
Oracle Tekelec Platform Distribution
Oracle Communications Lsms
Oracle Configuration Manager 12.1.2.0.8
Oracle Sd-wan Edge 9.1
Oracle Communications Eagle Application Processor
Oracle Communications Performance Intelligence Center
6.4
CVSSv2
CVE-2020-10543
Perl prior to 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow.
Perl Perl
Fedoraproject Fedora 31
Opensuse Leap 15.1
Oracle Communications Eagle Lnp Application Processor 10.1
Oracle Communications Eagle Lnp Application Processor 10.2
Oracle Sd-wan Edge 9.0
Oracle Sd-wan Edge 8.2
Oracle Enterprise Manager Base Platform 13.4.0.0
Oracle Communications Billing And Revenue Management 12.0.0.3.0
Oracle Communications Offline Mediation Controller 12.0.0.3.0
Oracle Communications Billing And Revenue Management 12.0.0.2.0
Oracle Communications Diameter Signaling Router
Oracle Communications Pricing Design Center 12.0.0.3.0
Oracle Tekelec Platform Distribution
Oracle Communications Eagle Lnp Application Processor 46.7
Oracle Communications Eagle Lnp Application Processor 46.8
Oracle Communications Eagle Lnp Application Processor 46.9
Oracle Communications Lsms
Oracle Configuration Manager 12.1.2.0.8
Oracle Sd-wan Edge 9.1
Oracle Communications Eagle Application Processor
Oracle Communications Performance Intelligence Center
1 Github repository
7.5
CVSSv2
CVE-2020-10878
Perl prior to 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.
Perl Perl
Fedoraproject Fedora 31
Opensuse Leap 15.1
Netapp Snap Creator Framework -
Netapp Oncommand Workflow Automation -
Oracle Communications Eagle Lnp Application Processor 10.1
Oracle Communications Eagle Lnp Application Processor 10.2
Oracle Sd-wan Aware 8.2
Oracle Enterprise Manager Base Platform 13.4.0.0
Oracle Communications Billing And Revenue Management 12.0.0.3.0
Oracle Communications Offline Mediation Controller 12.0.0.3.0
Oracle Communications Billing And Revenue Management 12.0.0.2.0
Oracle Communications Diameter Signaling Router
Oracle Communications Pricing Design Center 12.0.0.3.0
Oracle Tekelec Platform Distribution
Oracle Communications Eagle Lnp Application Processor 46.7
Oracle Communications Eagle Lnp Application Processor 46.8
Oracle Communications Eagle Lnp Application Processor 46.9
Oracle Communications Lsms
Oracle Configuration Manager 12.1.2.0.8
Oracle Communications Eagle Application Processor
Oracle Sd-wan Aware 9.1
6 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »