Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv3

CVE-2023-47038

Published: 18/12/2023 Updated: 30/04/2024
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Perl

Vulnerability Summary

A vulnerability was found in perl. This issue occurs when a crafted regular expression is compiled by perl, which can allow an attacker controlled byte buffer overflow in a heap allocated buffer.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

perl perl 5.34.0

Vendor Advisories

Debian CVElist Bug Report Logs: perl: CVE-2023-47038: Write past buffer end via illegal user-defined Unicode property
Debian Bug report logs - #1056746 perl: CVE-2023-47038: Write past buffer end via illegal user-defined Unicode property Package: perl; Maintainer for perl is Niko Tyni <ntyni@debianorg>; Source for perl is src:perl (PTS, buildd, popcon) Reported by: Niko Tyni <ntyni@debianorg> Date: Sat, 25 Nov 2023 20:21:01 UTC S ...
Red Hat:
Description<!---->A vulnerability was found in perl This issue occurs when a crafted regular expression is compiled by perl, which can allow an attacker controlled byte buffer overflow in a heap allocated bufferA vulnerability was found in perl This issue occurs when a crafted regular expression is compiled by perl, which can allow an attacker c ...

Mailing Lists

Full Disclosure: New CVEs and security fix releases for perl
<!--X-Body-Begin--> <!--X-User-Header--> oss-sec mailing list archives <!--X-User-Header-End--> <!--X-TopPNI--> By Date By Thread </form> <!--X-TopPNI-End--> <!--X-MsgBody--> <!--X-Subject-Header-Begin--> New CVEs and security fix releases for perl <!--X-Subject-Header-End--> <!--X-Head-of-Message--> From: Alan Coopersmith &lt; ...

Github Repositories

https://github.com/karenetheridge/JSON-Schema-Modern

Validate data against a schema

NAME JSON::Schema::Modern - Validate data against a schema VERSION version 0582 SYNOPSIS use JSON::Schema::Modern; $js = JSON::Schema::Modern-&gt;new( specification_version =&gt; 'draft2020-12', output_format =&gt; 'flag', # other options ); $result = $js-&gt;evaluate($instance_data, $schema_data);

References

CWE-787https://access.redhat.com/security/cve/CVE-2023-47038https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1056746https://bugzilla.redhat.com/show_bug.cgi?id=2249523https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GNEEWAACXQCEEAKSG7XX2D5YDRWLCIZJ/https://perldoc.perl.org/perl5382delta#CVE-2023-47038-Write-past-buffer-end-via-illegal-user-defined-Unicode-propertyhttps://access.redhat.com/errata/RHSA-2024:2228https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1056746https://nvd.nist.govhttps://github.com/karenetheridge/JSON-Schema-Modernhttps://access.redhat.com/security/cve/cve-2023-47038
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946CVE-2024-30309CVE-2024-4761CVE-2024-30051type confusionmemory leakCVE-2024-30293reflected XSSCVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook