Lucene search
K

115 matches found

NVD
NVD
added 2025/12/09 1:16 a.m.5 views

CVE-2013-10031

Plack-Middleware-Session versions before 0.17 may be vulnerable to HMAC comparison timing attacks...

7.5CVSS0.00255EPSS
Exploits0References1
OSV
OSV
added 2025/12/09 1:16 a.m.4 views

DEBIAN-CVE-2013-10031

Plack-Middleware-Session versions before 0.17 may be vulnerable to HMAC comparison timing attacks...

7.5CVSS5.2AI score0.00255EPSS
Exploits0References1
OSV
OSV
added 2025/12/09 1:16 a.m.5 views

UBUNTU-CVE-2013-10031

Plack-Middleware-Session versions before 0.17 may be vulnerable to HMAC comparison timing attacks...

7.5CVSS5.7AI score0.00255EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/12/09 12:12 a.m.4 views

CVE-2013-10031 Plack::Middleware::Session versions before 0.17 for Perl may be vulnerable to HMAC comparison timing attacks

Plack-Middleware-Session versions before 0.17 may be vulnerable to HMAC comparison timing attacks...

6.5AI score0.00255EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/12/09 12:12 a.m.5 views

CVE-2013-10031

Plack-Middleware-Session versions before 0.17 may be vulnerable to HMAC comparison timing attacks...

7.5CVSS5.2AI score0.00255EPSS
Exploits0
CVE
CVE
added 2025/12/09 12:12 a.m.17 views

CVE-2013-10031

Plack-Middleware-Session (Perl) versions before 0.17 are vulnerable to HMAC comparison timing attacks. Affected component: Plack::Middleware::Session; root cause is a timing-attack vulnerability in HMAC comparison. Impact is described as a potential exposure via timing differences, with no explic...

7.5CVSS6.5AI score0.00255EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/12/09 12:12 a.m.34 views

CVE-2013-10031 Plack::Middleware::Session versions before 0.17 for Perl may be vulnerable to HMAC comparison timing attacks

Plack-Middleware-Session versions before 0.17 may be vulnerable to HMAC comparison timing attacks...

0.00255EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.4 views

Plack::Middleware::Session 安全漏洞

Plack::Middleware::Session is a Plack open source minimalist session library for Plack. A security vulnerability exists in Plack::Middleware::Session versions prior to 0.17, which stems from vulnerability to HMAC comparison timing attacks...

7.5CVSS6.4AI score0.00255EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.7 views

PT-2025-49686

Plack-Middleware-Session versions before 0.17 may be vulnerable to HMAC comparison timing attacks...

6.8AI score0.00255EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-5162

Malware in sbrugna...

5CVSS6.1AI score0.02455EPSS
Exploits0References10
Fedora
Fedora
added 2025/09/16 1:15 a.m.6 views

[SECURITY] Fedora 42 Update: perl-Plack-Middleware-Session-0.36-1.fc42

This is a Plack Middleware component for session management. By default it will use cookies to keep session state and store data in memory. This distribution also comes with other state and store solutions...

7.3CVSS6.9AI score0.00329EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.12 views

Fedora 42 : perl-Plack-Middleware-Session (2025-ca07c36a0a)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-ca07c36a0a advisory. This update upgrade the package to version 0.36. This version fixes CVE-2025-40923 by using Crypt::SysRandom to generate secure session IDs. Tenable has...

7.3CVSS5.5AI score0.00329EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/09/16 12:0 a.m.5 views

Fedora: Security Advisory (FEDORA-2025-ca07c36a0a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3CVSS6.8AI score0.00329EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-40923

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the...

7.3CVSS5.9AI score0.00329EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/07/16 11:22 p.m.4 views

SUSE CVE-2025-40923

Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, and the PID. The PID will come from a small set of numbers, and the epoch time may be guessed, if i...

7.3CVSS7AI score0.00329EPSS
Exploits0References3
NVD
NVD
added 2025/07/16 1:15 p.m.7 views

CVE-2025-40923

Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, and the PID. The PID will come from a small set of numbers, and the epoch time may be guessed, if i...

7.3CVSS0.00329EPSS
Exploits0References5
OSV
OSV
added 2025/07/16 1:15 p.m.3 views

DEBIAN-CVE-2025-40923

Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, and the PID. The PID will come from a small set of numbers, and the epoch time may be guessed, if i...

7.3CVSS5.3AI score0.00329EPSS
Exploits0References1
OSV
OSV
added 2025/07/16 1:15 p.m.7 views

CVE-2025-40923

Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, and the PID. The PID will come from a small set of numbers, and the epoch time may be guessed, if i...

7.3CVSS7.3AI score
Exploits0References5
OSV
OSV
added 2025/07/16 1:15 p.m.5 views

UBUNTU-CVE-2025-40923

Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, and the PID. The PID will come from a small set of numbers, and the epoch time may be guessed, if i...

7.3CVSS5.8AI score0.00329EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/07/16 1:5 p.m.6 views

CVE-2025-40923 Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely

Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, and the PID. The PID will come from a small set of numbers, and the epoch time may be guessed, if i...

7.3AI score0.00329EPSS
Exploits0References4
Rows per page
Query Builder