Vulnerabilities > Perl
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-02 | CVE-2023-47039 | Out-of-bounds Write vulnerability in Perl A vulnerability was found in Perl. | 7.8 |
2023-12-18 | CVE-2023-47038 | Out-of-bounds Write vulnerability in Perl 5.34.0 A vulnerability was found in perl 5.30.0 through 5.38.0. | 7.8 |
2023-12-02 | CVE-2023-47100 | Improper Handling of Exceptional Conditions vulnerability in Perl In Perl before 5.38.2, S_parse_uniprop_string in regcomp.c can write to unallocated space because a property name associated with a \p{...} regular expression construct is mishandled. | 9.8 |
2023-08-22 | CVE-2022-48522 | Out-of-bounds Write vulnerability in Perl 5.34.0 In Perl 5.34.0, function S_find_uninit_var in sv.c has a stack-based crash that can lead to remote code execution or local privilege escalation. | 9.8 |
2023-04-29 | CVE-2023-31484 | Improper Certificate Validation vulnerability in multiple products CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS. | 8.1 |
2023-04-29 | CVE-2023-31486 | Improper Certificate Validation vulnerability in multiple products HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates. | 8.1 |
2021-12-13 | CVE-2020-16156 | Improper Verification of Cryptographic Signature vulnerability in multiple products CPAN 2.28 allows Signature Verification Bypass. | 7.8 |
2020-09-17 | CVE-2019-20919 | NULL Pointer Dereference vulnerability in multiple products An issue was discovered in the DBI module before 1.643 for Perl. | 4.7 |
2020-09-16 | CVE-2014-10402 | Incorrect Permission Assignment for Critical Resource vulnerability in Perl DBI An issue was discovered in the DBI module through 1.643 for Perl. | 6.1 |
2020-09-16 | CVE-2020-14393 | Out-of-bounds Write vulnerability in multiple products A buffer overflow was found in perl-DBI < 1.643 in DBI.xs. | 7.1 |