CVE-2017-0374

2017-05-2318:00:00

debian

www.cve.org

0.0004 Low

EPSS

Percentile

5.1%

JSON

lib/Config/Model.pm in Config-Model (aka libconfig-model-perl) before 2.102 allows local users to gain privileges via a crafted model in the current working directory, related to use of . with the INC array.

CNA Affected

[
  {
    "product": "libconfig-model-perl",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "libconfig-model-perl"
      }
    ]
  }
]