Lucene search
+L

137 matches found

CNNVD
CNNVD
added 2026/06/03 12:0 a.m.9 views

Cpanel::JSON::XS 安全漏洞

Cpanel::JSON::XS is a tool developed by RURBAN for converting Perl data structures into JSON format. Versions of Cpanel::JSON::XS prior to version 4.41 contained security vulnerabilities. These vulnerabilities stemmed from the use of dupkeysasarrayref, which led to type confusion when repeated...

7.3CVSS5.3AI score0.00253EPSS
Exploits0References3
OSV
OSV
added 2026/06/03 12:0 a.m.8 views

OPENSUSE-SU-2026:10950-1 perl-Cpanel-JSON-XS-4.410.0-1.1 on GA media

These are all security issues fixed in the perl-Cpanel-JSON-XS-4.410.0-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.00361EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.24 views

PT-2026-45892

Name of the Vulnerable Software and Affected Versions Cpanel::JSON::XS versions prior to 4.41 Description An issue exists where providing input prefixed with a UTF-8 Byte Order Mark BOM can lead to a denial of service. When the decode json function processes a 3-byte UTF-8 BOM, it advances the...

7.5CVSS5.4AI score0.00361EPSS
Exploits0References29
Tenable Nessus
Tenable Nessus
added 2026/05/30 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-9334

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cpanel::JSON::XS versions before 4.41 for Perl allow type confusion via duplicate object keys when dupkeysasarrayref is enabled. decodehv collapses duplicate...

7.3CVSS5.5AI score0.00253EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/30 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-9516

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cpanel::JSON::XS versions before 4.41 for Perl allow denial of service via UTF-8 BOM prefixed input when a decode filter callback throws. To skip a leading 3-by...

7.5CVSS5.7AI score0.00361EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in libcpanel-json-xs-perl

Cpanel::JSON::XS before version 4.40 for Perl has an integer buffer overflow that causes a segfault when parsing crafted JSON, allowing for denial-of-service attacks or other unspecified impacts...

5.6CVSS5.6AI score0.00405EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/15 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: perl-JSON-XS (UTSA-2026-006133)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006133 advisory. JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other...

7.5CVSS6AI score0.00598EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 8 : perl-JSON-XS-3.04-4.el8_10 (AXSA:2025-10954:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10954:01 advisory. JSON-XS: integer buffer overflow causing a segfault when parsing crafted JSON CVE-2025-40928 Tenable has extracted the preceding description block directly...

7.5CVSS7.6AI score0.00598EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.5 views

MiracleLinux 9 : perl-JSON-XS-4.04-1.el9_6 (AXSA:2025-10955:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10955:02 advisory. JSON-XS: integer buffer overflow causing a segfault when parsing crafted JSON CVE-2025-40928 Tenable has extracted the preceding description block directly...

7.5CVSS7.6AI score0.00598EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/11/18 1:7 a.m.8 views

CVE-2025-40928 affecting package perl-JSON-XS for versions less than 4.04-1

CVE-2025-40928 affecting package perl-JSON-XS for versions less than 4.04-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.00598EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/11/18 1:7 a.m.17 views

CVE-2025-40928 affecting package perl-JSON-XS for versions less than 4.04-1

CVE-2025-40928 affecting package perl-JSON-XS for versions less than 4.04-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.00598EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/11/14 12:0 a.m.3 views

Mageia: Security Advisory (MGASA-2025-0283)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00598EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/11/14 12:0 a.m.4 views

Mageia: Security Advisory (MGASA-2025-0284)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.6CVSS6.8AI score0.00405EPSS
Exploits0References4
OSV
OSV
added 2025/11/13 6:3 p.m.8 views

MGASA-2025-0284 Updated perl-Cpanel-JSON-XS packages fix security vulnerability

Cpanel::JSON::XS before version 4.40 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact. CVE-2025-40929...

5.6CVSS6.6AI score0.00405EPSS
Exploits0References3
OSV
OSV
added 2025/11/13 6:3 p.m.5 views

MGASA-2025-0283 Updated perl-JSON-XS packages fix security vulnerability

JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact. CVE-2025-40928...

7.5CVSS6.8AI score0.00598EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/11/01 10:54 a.m.4 views

Astra Linux – Vulnerability in libjson-xs-perl

JSON::XS before version 4.04 for Perl has an integer buffer overflow that causes a segfault when parsing crafted JSON, allowing for denial-of-service attacks or other unspecified impacts...

7.5CVSS5.8AI score0.00598EPSS
Exploits0References3
Redos
Redos
added 2025/10/30 12:0 a.m.9 views

ROS-20251030-06

A vulnerability in the Perl data structure to JSON conversion module Cpanel::JSON::XS is related to integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code on the target system...

5.6CVSS7.2AI score0.00405EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/10/28 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2025-8b24ea25bb)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00598EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/10/28 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2025-ce67f2ffd1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.6CVSS6.8AI score0.00405EPSS
Exploits0References2
OSV
OSV
added 2025/10/23 2:35 p.m.2 views

ROOT-OS-DEBIAN-11-CVE-2022-48623 CVE-2022-48623 in rootio-libcpanel-json-xs-perl - Patched by Root

Root has patched CVE-2022-48623 in the rootio-libcpanel-json-xs-perl package for Root:Debian:11. Multiple fixed versions available...

9.1CVSS5.4AI score0.00788EPSS
Exploits0
Rows per page
Query Builder