CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 4 hours ago•3 views

CVE-2026-46741

Etsy::StatsD versions through 1.002002 for Perl allow metric injections. The metric names and values are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Note that the git repository contains an unreleased version with the...

7.5CVSS

Vulnrichment•added 6 hours ago•3 views

CVE-2026-46741 Etsy::StatsD versions through 1.002002 for Perl allow metric injections

Cvelist•added 6 hours ago•3 views

CVE-2026-46741 Etsy::StatsD versions through 1.002002 for Perl allow metric injections

CVE•added 6 hours ago•6 views

CVE-2026-46741

Etsy::StatsD for Perl (versions up to 1.002002) is affected by metric injection due to unvalidated metric names and values containing newlines, colons, or pipes. The issue can allow an attacker to inject additional statsd metrics when metrics are generated from untrusted sources, with the Git rep...

7.5CVSS5.8AI score

EUVD•added 6 hours ago•3 views

EUVD-2026-34296

8.2CVSS5.8AI score0.00016EPSS

CVE•added 6 hours ago•4 views

CVE-2026-46739

Net::Statsd for Perl with versions prior to 0.13 is vulnerable to metric injections. The flaw arises because metric names aren’t checked for newlines, colons, or pipes, allowing untrusted-sourced metrics to inject additional statsd metrics. Additionally, update_stats and gauge do not validate tha...

5.3CVSS5.8AI score

EUVD•added 6 hours ago•3 views

EUVD-2026-34295

8.2CVSS5.8AI score0.00016EPSS

Debian CVE•added 6 hours ago•2 views

CVE-2026-46739

Net::Statsd versions before 0.13 for Perl allow metric injections. Th...

5.3CVSS5.8AI score

Exploits0

Vulnrichment•added 6 hours ago•3 views

CVE-2026-46739 Net::Statsd versions before 0.13 for Perl allow metric injections

Cvelist•added 6 hours ago•4 views

CVE-2026-46739 Net::Statsd versions before 0.13 for Perl allow metric injections

ATTACKERKB•added 6 hours ago•2 views

CVE-2026-46739

5.3CVSS5.8AI score

Exploits0References4

EUVD•added 21 hours ago•5 views

EUVD-2026-34188

Net::Async::Statsd::Client versions through 0.005 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics...

8.2CVSS5.8AI score0.00016EPSS

Positive Technologies•added 22 hours ago•5 views

PT-2026-46265

7.5CVSS5.8AI score

Positive Technologies•added 22 hours ago•4 views

PT-2026-46264

Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. The update stats used for updating counters and gauge methods do not check that value...

6.5CVSS5.8AI score0.00016EPSS

Exploits0References4

Cvelist•added yesterday•8 views

CVE-2026-8722 Net::Async::Statsd::Client versions through 0.005 for Perl allow metric injections

CVE•added yesterday•6 views

CVE-2026-8722

Net::Async::Statsd::Client (Perl) has a vulnerability up to version 0.005 where metric names are not validated for newlines, colons, or pipes. This allows untrusted sources to inject additional statsd metrics, enabling metric injection. The issue is documented in several sources (NVD, CVE list) a...

ATTACKERKB•added yesterday•4 views

CVE-2026-8722

Positive Technologies•added yesterday•4 views

PT-2026-46078

IBM Security Bulletins•added 2 days ago•4 views

Security Bulletin: Security vulnerabilities have been identified in IBM DB2 shipped with IBM License Metric Tool v9.

Summary IBM DB2 is shipped with IBM License Metric Tool. Information about security vulnerabilities affecting IBM DB2 has been published in separate security bulletins. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions...