159 matches found
EulerOS 2.0 SP10 : perl-HTTP-Tiny (EulerOS-SA-2023-2820)
According to the versions of the perl-HTTP-Tiny package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration wher...
EulerOS Virtualization 2.9.1 : perl-HTTP-Tiny (EulerOS-SA-2023-2968)
According to the versions of the perl-HTTP-Tiny package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS...
EulerOS Virtualization 2.10.1 : perl (EulerOS-SA-2023-2924)
According to the versions of the perl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuratio...
EulerOS 2.0 SP10 : perl-HTTP-Tiny (EulerOS-SA-2023-2796)
According to the versions of the perl-HTTP-Tiny package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration wher...
EulerOS Virtualization 2.11.0 : perl-HTTP-Tiny (EulerOS-SA-2023-3078)
According to the versions of the perl-HTTP-Tiny package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS...
EulerOS Virtualization 2.11.1 : perl (EulerOS-SA-2023-3060)
According to the versions of the perl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuratio...
EulerOS 2.0 SP11 : perl-HTTP-Tiny (EulerOS-SA-2023-2867)
According to the versions of the perl-HTTP-Tiny package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration wher...
EulerOS Virtualization 3.0.6.0 : perl-HTTP-Tiny (EulerOS-SA-2023-3444)
According to the versions of the perl-HTTP-Tiny package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS...
EulerOS 2.0 SP8 : perl-HTTP-Tiny (EulerOS-SA-2023-3144)
According to the versions of the perl-HTTP-Tiny package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration wher...
EulerOS 2.0 SP11 : perl (EulerOS-SA-2023-2849)
According to the versions of the perl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users...
Improper Certificate Validation
CPAN.pm is vulnerable to Improper Certificate Validation. The vulnerability is caused due to not verifying TLS certificates when downloading distributions over HTTPS because verifyssl is missing when using HTTP::Tiny library during the connection. This can allow an attacker to inject into the...
Improper Certificate Validation
HTTP::Tiny is vulnerable to Improper Certificate Validation. The vulnerability is caused due to an Insecure Default Initialization of Resource flaw where TLS certificates were not verified by default. This can lead to loss of confidentiality, integrity, and availability...
Huawei EulerOS: Security Advisory for perl (EulerOS-SA-2023-3442)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for perl-HTTP-Tiny (EulerOS-SA-2023-3444)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for perl-HTTP-Tiny (EulerOS-SA-2023-3411)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CLSA-2023-1701293817 perl: Fix of 2 CVEs
CVE-2023-31484: fix possible MITM attach due to missing SSL verification - CVE-2023-31486: add verifySSL=1 to HTTP::Tiny default configuration...
Oracle Linux 8 : perl-HTTP-Tiny (ELSA-2023-7174)
The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-7174 advisory. - Changes the verifySSL default parameter from 0 to 1 - CVE-2023-31486 Tenable has extracted the preceding description block directly from the Oracle Linux...
perl-HTTP-Tiny security update
0.074-2 - Changes the verifySSL default parameter from 0 to 1 - CVE-2023-31486 - Resolves: rhbz2228409...
Oracle Linux 9 : perl-HTTP-Tiny (ELSA-2023-6542)
The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-6542 advisory. - Changes the verifySSL default parameter from 0 to 1 - CVE-2023-31486 Tenable has extracted the preceding description block directly from the Oracle Linux...
Moderate: Red Hat Security Advisory: perl-HTTP-Tiny security update
An update for perl-HTTP-Tiny is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...