GHSA-9mmm-86g7-vp9g

Опубликовано: 27 авг. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers.

Ссылки

EPSS

Процентиль: 59%

0.00383

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2024-45321

Дефекты

CWE-494

CWE-94

Связанные уязвимости

CVE-2024-45321

CVSS3: 8.1

ubuntu

около 1 года назад

The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers.

CVE-2024-45321

CVSS3: 8.1

redhat

около 1 года назад

The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers.

CVE-2024-45321

CVSS3: 8.1

nvd

около 1 года назад

The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers.

CVE-2024-45321

CVSS3: 8.1

debian

около 1 года назад

The App::cpanminus package through 1.7047 for Perl downloads code via ...

RLSA-2024:10218

rocky

8 месяцев назад

Moderate: perl-App-cpanminus security update

EPSS

Процентиль: 59%

0.00383

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2024-45321

Дефекты

CWE-494

CWE-94