CVE-2023-47039

🗓️ 02 Jan 2024 05:30:53Reported by redhatType

CVE-2023-47039: Perl vulnerability allows arbitrary code executio

Reporter	Title	Published	Views	Family All 21
Circl	CVE-2023-47039	3 Jan 202401:34	–	circl
CNNVD	Perl Security Vulnerabilities	25 Nov 202300:00	–	cnnvd
Cvelist	CVE-2023-47039 Perl: perl for windows binary hijacking vulnerability	2 Jan 202405:30	–	cvelist
Debian CVE	CVE-2023-47039	2 Jan 202405:30	–	debiancve
EUVD	EUVD-2023-51194	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Oracle Database Products	18 Apr 202400:00	–	ncsc
NCSC	Vulnerabilities fixed in Siemens products	12 Nov 202414:19	–	ncsc
NVD	CVE-2023-47039	2 Jan 202406:15	–	nvd
Oracle	Oracle Critical Patch Update Advisory - April 2024	16 Apr 202400:00	–	oracle
OSV	BELL-CVE-2023-47039 CVE-2023-47039 does not affect BellSoft software	27 Nov 202305:58	–	osv

NVD

Node

perl perlRange<5.32.1

AND

microsoft windowsMatch-

[
  {
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "5.34.3",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "5.36.0",
        "lessThan": "5.36.3",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "5.38.0",
        "lessThan": "5.38.2",
        "versionType": "semver"
      }
    ],
    "packageName": "perl",
    "collectionURL": "https://github.com/Perl/perl5",
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 6",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "perl",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "perl",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "perl",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "perl:5.30/perl",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "perl:5.32/perl",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "perl",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ]
  }
]

Source	Link
access	www.access.redhat.com/security/cve/CVE-2023-47039
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugs	www.bugs.debian.org/cgi-bin/bugreport.cgi
security	www.security.netapp.com/advisory/ntap-20240208-0005/
perldoc	www.perldoc.perl.org/perl5382delta

20 Nov 2025 17:57Current

7.9High risk

Vulners AI Score7.9

CVSS 3.17.8

EPSS0.0008

SSVC