GHSA-9mmm-86g7-vp9g

Опубликовано: 27 авг. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers.

Ссылки

EPSS

Процентиль: 28%

0.00099

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2024-45321

Дефекты

CWE-494

CWE-94

Связанные уязвимости

CVE-2024-45321

CVSS3: 8.1

ubuntu

12 месяцев назад

The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers.

CVE-2024-45321

CVSS3: 8.1

redhat

12 месяцев назад

The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers.

CVE-2024-45321

CVSS3: 8.1

nvd

12 месяцев назад

The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers.

CVE-2024-45321

CVSS3: 8.1

debian

12 месяцев назад

The App::cpanminus package through 1.7047 for Perl downloads code via ...

ELSA-2024-10219

oracle-oval

9 месяцев назад

ELSA-2024-10219: perl-App-cpanminus:1.7044 security update (MODERATE)

EPSS

Процентиль: 28%

0.00099

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2024-45321

Дефекты

CWE-494

CWE-94