Lucene search
K

38 matches found

Fedora
Fedora
added 2026/06/19 1:10 a.m.12 views

[SECURITY] Fedora 43 Update: perl-Net-Statsd-0.13-1.fc43

This module implements a client for a statsd statistics collection server, su ch as the one in use at Etsy.com. You want to use this module to track statistics in your Perl application, such as how many times a certain event occurs user logins in a web application, or database queries issued, or...

5.3CVSS5.6AI score0.00258EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/09 11:54 a.m.15 views

CVE-2026-46739

A flaw was found in perl-Net-Statsd. This vulnerability allows an attacker to inject additional statsd metrics due to insufficient validation of metric names and values. Specifically, the software does not properly check for newlines, colons, or pipes in metric names, nor does it ensure that valu...

5.3CVSS5.3AI score0.00258EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-46739

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from...

5.3CVSS5.5AI score0.00258EPSS
Exploits0References3
NVD
NVD
added 2026/06/04 5:16 p.m.12 views

CVE-2026-46739

Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. The updatestats used for updating counters and gauge methods do not check that values...

5.3CVSS0.00258EPSS
Exploits0References3
OSV
OSV
added 2026/06/04 5:16 p.m.9 views

UBUNTU-CVE-2026-46739

Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. The updatestats used for updating counters and gauge methods do not check that values...

5.3CVSS5.3AI score0.00258EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/04 3:45 p.m.10 views

CVE-2026-46739

Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. The updatestats used for updating counters and gauge methods do not check that values...

5.3CVSS5.8AI score0.00258EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/04 3:45 p.m.34 views

CVE-2026-46739 Net::Statsd versions before 0.13 for Perl allow metric injections

Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. The updatestats used for updating counters and gauge methods do not check that values...

0.00258EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/04 3:45 p.m.12 views

EUVD-2026-34295

Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. The updatestats used for updating counters and gauge methods do not check that values...

8.2CVSS5.8AI score0.00344EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/04 3:45 p.m.12 views

CVE-2026-46739 Net::Statsd versions before 0.13 for Perl allow metric injections

Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. The updatestats used for updating counters and gauge methods do not check that values...

5.8AI score0.00258EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/06/04 3:45 p.m.10 views

CVE-2026-46739

Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. The updatestats used for updating counters and gauge methods do not check that values...

5.3CVSS5.8AI score0.00258EPSS
Exploits0
CVE
CVE
added 2026/06/04 3:45 p.m.26 views

CVE-2026-46739

Net::Statsd for Perl with versions prior to 0.13 is vulnerable to metric injections. The flaw arises because metric names aren’t checked for newlines, colons, or pipes, allowing untrusted-sourced metrics to inject additional statsd metrics. Additionally, update_stats and gauge do not validate tha...

5.3CVSS5.8AI score0.00258EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/06/04 3:45 p.m.2 views

CVE-2026-46739 Net::Statsd versions before 0.13 for Perl allow metric injections

Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. The updatestats used for updating counters and gauge methods do not check that values...

5.3CVSS5.9AI score0.00344EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/05/26 10:48 p.m.10 views

CVE-2026-46740

Mojolicious::Plugin::Statsd versions through 0.04 for Perl allowed metric injections. The metric names and set values were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Version 0.06 changes the module from being a stats...

8.2CVSS5.8AI score0.00344EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/26 10:48 p.m.8 views

CVE-2026-46740 Mojolicious::Plugin::Statsd versions through 0.04 for Perl allowed metric injections

Mojolicious::Plugin::Statsd versions through 0.04 for Perl allowed metric injections. The metric names and set values were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Version 0.06 changes the module from being a stats...

5.8AI score0.00326EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/26 10:48 p.m.44 views

CVE-2026-46740 Mojolicious::Plugin::Statsd versions through 0.04 for Perl allowed metric injections

Mojolicious::Plugin::Statsd versions through 0.04 for Perl allowed metric injections. The metric names and set values were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Version 0.06 changes the module from being a stats...

0.00326EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/26 10:48 p.m.13 views

EUVD-2026-32021

Mojolicious::Plugin::Statsd versions through 0.04 for Perl allowed metric injections. The metric names and set values were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Version 0.06 changes the module from being a stats...

8.2CVSS5.8AI score0.00344EPSS
Exploits0References3
OSV
OSV
added 2026/05/26 10:48 p.m.2 views

CVE-2026-46740 Mojolicious::Plugin::Statsd versions through 0.04 for Perl allowed metric injections

Mojolicious::Plugin::Statsd versions through 0.04 for Perl allowed metric injections. The metric names and set values were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Version 0.06 changes the module from being a stats...

5.3CVSS6AI score0.00344EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2026/05/19 1:56 p.m.11 views

CVE-2026-46719

Net::Statsd::Lite versions before 0.9.0 for Perl allowed metric injections. The metric names were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics...

6.5CVSS5.8AI score0.00306EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/19 1:56 p.m.13 views

CVE-2026-8788

Net::Statsd::Lite versions through 0.10.0 for Perl allowed metric injections. The values from the setadd method were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Note that version 0.9.0 fixed a similar issue...

7.3CVSS5.8AI score0.00226EPSS
Exploits0References1
NVD
NVD
added 2026/05/18 8:16 a.m.30 views

CVE-2026-8788

Net::Statsd::Lite versions through 0.10.0 for Perl allowed metric injections. The values from the setadd method were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Note that version 0.9.0 fixed a similar issue...

7.3CVSS0.00226EPSS
Exploits0References2
Rows per page
Query Builder