Lucene search
K

6 matches found

OSV
OSV
added 2026/05/10 8:15 p.m.1 views

CVE-2026-45191 Net::CIDR::Lite versions before 0.24 for Perl does not properly consider extraneous zero characters in CIDR mask values, which may allow IP ACL bypass

Net::CIDR::Lite versions before 0.24 for Perl does not properly consider extraneous zero characters in CIDR mask values, which may allow IP ACL bypass. Mask forms like "/00" and "/01" pass validation and parse to the same prefix as their unpadded value. See also CVE-2026-45190...

6.5CVSS5.9AI score0.00311EPSS
Exploits0References7
CVE
CVE
added 2026/05/10 8:15 p.m.28 views

CVE-2026-45191

Net::CIDR::Lite (Perl) is affected in versions before 0.24. The flaw is in CIDR mask handling: extraneous zero characters in masks are not properly validated, causing /00 and /01 (and other zero-padded forms) to pass validation and be parsed to the same prefix as the unpadded value, potentially a...

6.5CVSS5.8AI score0.003EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/03/02 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-4456

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Net::CIDR versions before 0.24 for Perl mishandle leading zeros in IP CIDR addresses, which may have unspecified impact. The functions addr2cidr and cidrlookup...

6.5CVSS5.5AI score0.00322EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:13 a.m.4 views

SUSE CVE-2006-6944

phpMyAdmin before 2.9.1.1 allows remote attackers to bypass Allow/Deny access rules that use IP addresses via false headers...

7.5CVSS7.1AI score0.0139EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:42 a.m.7 views

SUSE CVE-2021-29662

The Data::Validate::IP module through 0.29 for Perl does not properly consider extraneous zero characters at the beginning of an IP address string, which in some situations allows attackers to bypass access control that is based on IP addresses...

7.5CVSS7.5AI score0.02219EPSS
Exploits1References3
OSV
OSV
added 2021/05/06 1:15 p.m.3 views

UBUNTU-CVE-2021-29921

In Python before 3,9,5, the ipaddress library mishandles leading zero characters in the octets of an IP address string. This in some situations allows attackers to bypass access control that is based on IP addresses...

9.8CVSS7.1AI score0.06827EPSS
Exploits1References13
Rows per page
Query Builder