Lucene search
China National Vulnerability DatabaseCNVD-2022-02759HistoryDec 15, 2021 - 12:00 a.m.
cpanminus Data Forgery Issue Vulnerability (CNVD-2022-02759)
2021-12-1500:00:00
China National Vulnerability Database
www.cnvd.org.cn
4
0.001 Low
EPSS
Percentile
44.6%
cpanminus is a script that is used to obtain, decompress, build and install modules from CPAN without performing any other operations. cpanminus is vulnerable to a data forgery issue, which can be exploited by attackers to bypass signature verification.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cpanminus cpanminus | eq | 1.7044 |
Related
nessus
nessus
EulerOS 2.0 SP8 : perl-App-cpanminus (EulerOS-SA-2022-1579)
2022-04-25 00:00:00
openSUSE 15 Security Update : perl-App-cpanminus (openSUSE-SU-2022:0074-1)
2022-03-07 00:00:00
ubuntu
ubuntu
App::cpanminus vulnerability
2022-01-24 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0078)
2022-02-23 00:00:00
Ubuntu: Security Advisory (USN-5230-1)
2023-01-27 00:00:00
nvd
nvd
CVE-2020-16154
2021-12-13 17:15:08
suse
suse
Security update for perl-App-cpanminus (moderate)
2022-03-06 00:00:00
ubuntucve
ubuntucve
CVE-2020-16154
2021-12-13 00:00:00
redhatcve
redhatcve
CVE-2020-16154
2021-12-23 17:20:59
cve
cve
CVE-2020-16154
2021-12-13 17:15:08
mageia
mageia
Updated cpanminus packages fix security vulnerability
2022-02-22 23:15:16
prion
prion
Security feature bypass
2021-12-13 17:15:00
cvelist
cvelist
CVE-2020-16154
2021-12-13 17:00:32
alpinelinux
alpinelinux
CVE-2020-16154
2021-12-13 17:15:08
fedora
fedora
[SECURITY] Fedora 35 Update: perl-App-cpanminus-1.7045-1.fc35
2022-02-09 01:18:47
veracode
veracode
Incorrect Signature Verification
2022-02-08 02:48:58
osv
osv
cpanminus vulnerability
2022-01-24 13:44:44
debiancve
debiancve
CVE-2020-16154
2021-12-13 17:15:08