CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в perl

CPAN.pm before version 2.35 does not verify TLS certificates when downloading distributions via HTTPS...

8.1CVSS7.2AI score0.01523EPSS

Exploits1References2

RedhatCVE•added 2026/01/09 8:36 a.m.•8 views

CVE-2020-10925

This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded information on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the downloading of files vi...

8.8CVSS6.7AI score0.00137EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-35789

Malicious code in bioql PyPI...

8.1CVSS7.8AI score0.01523EPSS

Exploits1References13

OSV•added 2025/10/03 1:13 p.m.•3 views

CLSA-2025-1759497192 perl-CPAN: Fix of CVE-2023-31484

CVE-2023-31484: verify TLS certificates when downloading distributions over HTTPS...

8.1CVSS7.2AI score0.01523EPSS

Exploits1References1

OSV•added 2025/09/25 5:38 p.m.•3 views

CLSA-2025-1758821935 perl-CPAN: Fix of 2 CVEs

CVE-2023-31484: verify TLS certificates when downloading distributions over HTTPS - CVE-2020-16156: fix Signature Verification Bypass...

8.1CVSS7.1AI score0.01523EPSS

Exploits2References1

RedHat Linux•added 2024/05/22 9:30 a.m.•1 views

perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS

A flaw was found in Perl's CPAN, which doesn't check TLS certificates when downloading content. This happens due to verifySSL missing when suing the HTTP::Tiny library during the connection. This may allow an attacker to inject into the network path and perform a Man-In-The-Middle attack, causing...

8.1CVSS7.3AI score0.01523EPSS

Exploits1References4

RedHat Linux•added 2023/11/07 8:32 a.m.•0 views

perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS

8.1CVSS7.3AI score0.01523EPSS

Exploits1References4

OSV•added 2023/07/08 11:5 a.m.•1 views

OESA-2023-1420 perl-CPAN security update

The CPAN module automates or at least simplifies the make and install of perl modules and extensions. It includes some primitive searching capabilities and knows how to use LWP, HTTP::Tiny, Net::FTP and certain external download clients to fetch distributions from the net. The CPAN module also...

8.1CVSS6.9AI score0.01523EPSS

Exploits1References2

OSV•added 2023/04/29 12:15 a.m.•4 views

AZL-37126 CVE-2023-31484 affecting package perl for versions less than 5.34.1-489

CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS...

8.1CVSS7.2AI score0.01523EPSS

Exploits1References1

Prion•added 2023/04/29 12:15 a.m.•28 views

Design/Logic Flaw

CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS...

5.1CVSS7.8AI score0.01523EPSS

Exploits1References10Affected Software2

OSV•added 2020/03/30 7:15 p.m.•0 views

UBUNTU-CVE-2019-17560

The "Apache NetBeans" autoupdate system does not validate SSL certificates and hostnames for https based downloads. This allows an attacker to intercept downloads of autoupdates and modify the download, potentially injecting malicious code. “Apache NetBeans" versions up to and including 11.2 are...

9.1CVSS7.2AI score0.01555EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by