Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

130 matches found

NVD
NVDadded 2026/06/10 7:16 p.m.20 views

CVE-2026-50637

Metrics::Any::Adapter::Statsd versions before 0.04 for Perl does not protect against metric injections. The statsd protocol and extensions allow mutiple metrics, separated by newlines, to be sent per packet. The send method does not validate the contents of the metric names or values. If the name...

8.2CVSS0.00308EPSS
Exploits0References6
NVD
NVDadded 2026/06/10 7:16 p.m.11 views

CVE-2026-50639

Metrics::Any::Adapter::SignalFx versions before 0.04 for Perl does not protect against metric injections. The statsd protocol and extensions such as dogstatsd allow mutiple metrics, separated by newlines, to be sent per packet. Metrics::Any::Adapter::SignalFx which extends...

6.5CVSS0.00252EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/06/10 6:32 p.m.28 views

CVE-2026-50639 Metrics::Any::Adapter::SignalFx versions before 0.04 for Perl does not protect against metric injections

Metrics::Any::Adapter::SignalFx versions before 0.04 for Perl does not protect against metric injections. The statsd protocol and extensions such as dogstatsd allow mutiple metrics, separated by newlines, to be sent per packet. Metrics::Any::Adapter::SignalFx which extends...

0.00252EPSS
Exploits0References4
EUVD
EUVDadded 2026/06/10 6:32 p.m.8 views

EUVD-2026-36106

Metrics::Any::Adapter::SignalFx versions before 0.04 for Perl does not protect against metric injections. The statsd protocol and extensions such as dogstatsd allow mutiple metrics,separated by newlines, to be sent per packet. Metrics::Any::Adapter::SignalFx which extends...

9.1CVSS5.4AI score0.00332EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/06/10 6:32 p.m.28 views

CVE-2026-50637 Metrics::Any::Adapter::Statsd versions before 0.04 for Perl does not protect against metric injections

Metrics::Any::Adapter::Statsd versions before 0.04 for Perl does not protect against metric injections. The statsd protocol and extensions allow mutiple metrics, separated by newlines, to be sent per packet. The send method does not validate the contents of the metric names or values. If the name...

0.00308EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/06/10 6:32 p.m.5 views

CVE-2026-50637 Metrics::Any::Adapter::Statsd versions before 0.04 for Perl does not protect against metric injections

Metrics::Any::Adapter::Statsd versions before 0.04 for Perl does not protect against metric injections. The statsd protocol and extensions allow mutiple metrics, separated by newlines, to be sent per packet. The send method does not validate the contents of the metric names or values. If the name...

5.8AI score0.00308EPSS
Exploits0References6
EUVD
EUVDadded 2026/06/10 6:32 p.m.8 views

EUVD-2026-36104

Metrics::Any::Adapter::Statsd versions before 0.04 for Perl does not protect against metric injections. The statsd protocol and extensions allow mutiple metrics,separated by newlines, to be sent per packet. The send method does not validate the contents of the metric names or values. If the names...

8.2CVSS5.4AI score0.00331EPSS
Exploits0References4
CVE
CVEadded 2026/06/10 6:32 p.m.19 views

CVE-2026-50637

The CVE concerns Metrics::Any::Adapter::Statsd (Perl) prior to v0.04, where the send path did not validate metric names/values, allowing metric injections when names contain newlines and statsd control characters (colon, pipe). This vulnerability affects Metrics::Any::Adapter::Statsd and related ...

8.2CVSS5.8AI score0.00308EPSS
Exploits0References6
CNNVD
CNNVDadded 2026/06/10 12:0 a.m.6 views

Metrics::Any::Adapter::Statsd 注入漏洞

Metrics::Any::Adapter::Statsd is a Perl metric collection adapter module developed by PEVANS’s individual developers. Versions of Metrics::Any::Adapter::Statsd prior to version 0.04 contained an injection vulnerability. This vulnerability stemmed from the send method not verifying the content of...

8.2CVSS5.3AI score0.00308EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/06/10 12:0 a.m.7 views

PT-2026-48521

Name of the Vulnerable Software and Affected Versions Metrics::Any::Adapter::SignalFx versions prior to 0.04 Description The software does not protect against metric injections. The statsd protocol and its extensions, such as dogstatsd, allow multiple metrics separated by newlines to be sent with...

6.5CVSS5.8AI score0.00252EPSS
Exploits0References8
Positive Technologies
Positive Technologiesadded 2026/06/10 12:0 a.m.10 views

PT-2026-48519

Name of the Vulnerable Software and Affected Versions Metrics::Any::Adapter::Statsd versions prior to 0.04 Description The software does not protect against metric injections. The statsd protocol allows multiple metrics to be sent per packet, separated by newlines. The send method fails to valida...

8.2CVSS5.8AI score0.00308EPSS
Exploits0References10
RedhatCVE
RedhatCVEadded 2026/06/09 11:54 a.m.12 views

CVE-2026-46739

A flaw was found in perl-Net-Statsd. This vulnerability allows an attacker to inject additional statsd metrics due to insufficient validation of metric names and values. Specifically, the software does not properly check for newlines, colons, or pipes in metric names, nor does it ensure that valu...

5.3CVSS5.3AI score0.00268EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/06/05 7:47 p.m.6 views

CVE-2026-45179

Plack::Middleware::Statsd versions before 0.9.0 for Perl may leak user IP addresses. If the communication channel to the statsd daemon is not secured for example, by sending UDP packets to a host on another network, then users' IP addresses may be leaked. Since version 0.9.0, the IP address is no...

5.3CVSS5.4AI score0.00219EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:47 p.m.5 views

CVE-2026-45180

Catalyst::Plugin::Statsd versions through 0.10.0 for Perl may leak session ids. If the communication channel to the statsd daemon is not secured for example, by sending UDP packets to a host on another network, then users' session ids may be leaked. This may allow an attacker to use session ids a...

7.5CVSS5.5AI score0.00244EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:46 p.m.8 views

CVE-2026-46741

Etsy::StatsD versions through 1.002002 for Perl allow metric injections. The metric names and values are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Note that the git repository contains an unreleased version with the...

7.5CVSS5.5AI score0.00272EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2026/06/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-46739

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from...

5.3CVSS5.5AI score0.00268EPSS
Exploits0References3
NVD
NVDadded 2026/06/04 5:16 p.m.8 views

CVE-2026-46741

Etsy::StatsD versions through 1.002002 for Perl allow metric injections. The metric names and values are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Note that the git repository contains an unreleased version with the...

7.5CVSS0.00272EPSS
Exploits0References2
NVD
NVDadded 2026/06/04 5:16 p.m.9 views

CVE-2026-46739

Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. The updatestats used for updating counters and gauge methods do not check that values...

5.3CVSS0.00268EPSS
Exploits0References3
OSV
OSVadded 2026/06/04 5:16 p.m.6 views

UBUNTU-CVE-2026-46739

Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. The updatestats used for updating counters and gauge methods do not check that values...

5.3CVSS5.3AI score0.00268EPSS
Exploits0References4
EUVD
EUVDadded 2026/06/04 3:54 p.m.9 views

EUVD-2026-34296

Etsy::StatsD versions through 1.002002 for Perl allow metric injections. The metric names and values are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Note that the git repository contains an unreleased version with the...

8.2CVSS5.8AI score0.00331EPSS
Exploits0References2
Rows per page
Query Builder