Описание
An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute in the data source name (DSN). NOTE: this issue exists because of an incomplete fix for CVE-2014-10401.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1.640-1ubuntu0.3 |
| devel | not-affected | 1.643-3build1 |
| esm-infra-legacy/trusty | needed | |
| esm-infra/bionic | released | 1.640-1ubuntu0.3 |
| esm-infra/focal | released | 1.643-1ubuntu0.1 |
| esm-infra/xenial | released | 1.634-1ubuntu0.2+esm1 |
| focal | released | 1.643-1ubuntu0.1 |
| groovy | ignored | end of life |
| hirsute | not-affected | 1.643-3build1 |
| impish | not-affected | 1.643-3build1 |
Показывать по
EPSS
3.6 Low
CVSS2
6.1 Medium
CVSS3
Связанные уязвимости
An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute in the data source name (DSN). NOTE: this issue exists because of an incomplete fix for CVE-2014-10401.
An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute in the data source name (DSN). NOTE: this issue exists because of an incomplete fix for CVE-2014-10401.
An issue was discovered in the DBI module through 1.643 for Perl. DBD: ...
An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute in the data source name (DSN). NOTE: this issue exists because of an incomplete fix for CVE-2014-10401.
Уязвимость модуля DBI интерфейса базы данных Perl DBI, позволяющая нарушителю получить доступ к конфиденциальным данным, а также вызвать отказ в обслуживании
EPSS
3.6 Low
CVSS2
6.1 Medium
CVSS3