75 matches found
Oracle Linux 7 : perl (ELSA-2026-0079)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-0079 advisory. 4:5.16.3-299.0.1 - Fixed CVE-2023-31484 verify TLS certificates Orabug: 38816274 Tenable has extracted the preceding description block directly from the Oracle...
MiracleLinux 9 : perl-CPAN-2.29-3.el9 (AXSA:2023-6650:01)
The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-6650:01 advisory. perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS CVE-2023-31484 Tenable has extracted the preceding description block...
MiracleLinux 8 : perl-CPAN-2.18-399.el8 (AXSA:2024-8271:01)
The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8271:01 advisory. perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS CVE-2023-31484 Tenable has extracted the preceding description block...
TencentOS Server 2: perl (TSSA-2026:0013)
The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0013 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...
Moderate: Red Hat Security Advisory: perl security update
An update for perl is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...
MGASA-2025-0276 Updated perl-CPAN & perl-HTTP-Tiny packages fix security vulnerabilities
CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS. CVE-2023-31484 HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates...
NewStart CGSL MAIN 7.02 : perl-CPAN Vulnerability (NS-SA-2025-0188)
The remote NewStart CGSL host, running version MAIN 7.02, has perl-CPAN packages installed that are affected by a vulnerability: - CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS. CVE-2023-31484 Note that Nessus has not tested for these issues but ha...
TencentOS Server 3: perl-CPAN (TSSA-2024:0146)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0146 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
TencentOS Server 4: perl-CPAN (TSSA-2024:0859)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0859 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
RLSA-2024:3094 Moderate: perl-CPAN security update
The CPAN module is a tool to query, download and build perl modules from CPAN sites. Security Fixes: perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS CVE-2023-31484 For more details about the security issues, including the impact, a CVSS score,...
perl-CPAN security update
An update is available for perl-CPAN. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The CPAN module is a tool to query, download and build perl modules from CP...
Linux Distros Unpatched Vulnerability : CVE-2023-31484
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS. CVE-2023-31484 Note that Nessus relies on the presence of the...
[SECURITY] [DLA 3926-1] perl security update
Debian LTS Advisory DLA-3926-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin October 21, 2024 https://wiki.debian.org/LTS Package : perl Version : 5.32.1-4+deb11u4 CVE ID : CVE-2020-16156 CVE-2023-31484 Debian Bug : 1015985 1035109 Vulnerabilities were found in...
Debian: Security Advisory (DLA-3926-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-3926 : libperl-dev - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3926 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3926-1 [email protected]...
perl-CPAN security update
2.18-399 - Fix tests to run in correct order 2.18-398 - Fix CVE-2023-31484 - Package tests 2.18-397 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 2.18-396 - Rebase patches to prevent from installing back-up files 2.18-395 - Rebuilt for...
RHEL 8 : perl-CPAN (RHSA-2024:3094)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:3094 advisory. The CPAN module is a tool to query, download and build perl modules from CPAN sites. Security Fixes: perl: CPAN.pm does not verify TLS certificates...
SUSE: Security Advisory (SUSE-SU-2024:1630-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Rocky Linux 9 : perl-CPAN (RLSA-2023:6539)
The remote Rocky Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RLSA-2023:6539 advisory. - CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS. CVE-2023-31484 Note that Nessus has not tested for this issue b...
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a man-in-the-middle attack in CPAN.pm [CVE-2023-31484]
Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a man-in-the-middle attack in CPAN.pm, caused by improper validation of TLS certificates when downloading distributions over HTTPS. CVE-2023-31484. CPAN.pm is used as a component of our Speech runtimes. This...