Описание
The gen_class_pod implementation in lib/Config/Model/Utils/GenClassPod.pm in Config-Model (aka libconfig-model-perl) before 2.102 has a dangerous "use lib" line, which allows remote attackers to have an unspecified impact via a crafted Debian package file.
Ссылки
- Release Notes
- Patch
- Third Party Advisory
- Release Notes
- Patch
- Third Party Advisory
Уязвимые конфигурации
EPSS
7.3 High
CVSS3
6.8 Medium
CVSS2
Дефекты
Связанные уязвимости
The gen_class_pod implementation in lib/Config/Model/Utils/GenClassPod.pm in Config-Model (aka libconfig-model-perl) before 2.102 has a dangerous "use lib" line, which allows remote attackers to have an unspecified impact via a crafted Debian package file.
The gen_class_pod implementation in lib/Config/Model/Utils/GenClassPod ...
The gen_class_pod implementation in lib/Config/Model/Utils/GenClassPod.pm in Config-Model (aka libconfig-model-perl) before 2.102 has a dangerous "use lib" line, which allows remote attackers to have an unspecified impact via a crafted Debian package file.
EPSS
7.3 High
CVSS3
6.8 Medium
CVSS2