Lucene search
+L

59 matches found

attackerkb
attackerkb
added 2026/06/05 2:30 p.m.6 views

CVE-2026-10879

DBI versions before 1.648 for Perl have a heap overflow when preparsing SQL statements with more than 9 binders. The preparse method expands SQL placeholder characters to numbered binders of the form :pN, but only allocates three characters per binder in the buffer. Placeholders 10-99 require fou...

5.7AI score0.00413EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/05 12:0 a.m.15 views

PT-2026-46958

Name of the Vulnerable Software and Affected Versions DBI versions prior to 1.648 Description A heap overflow occurs when preparsing SQL statements containing more than 9 binders. The preparse function expands SQL placeholder characters into numbered binders using the format :pN, but it only...

9.8CVSS5.6AI score0.00452EPSS
Exploits0References37
cnnvd
cnnvd
added 2026/06/05 12:0 a.m.12 views

DBI 安全漏洞

DBI is a Perl database interface tool developed under the open-source license of perl5-dbi. Versions of DBI prior to 1.648 contained security vulnerabilities; these vulnerabilities stemmed from heap overflows that occurred when pre-resolving SQL statements involving more than nine binders...

9.8CVSS5.6AI score0.00413EPSS
Exploits0References3
nessus
nessus
added 2026/06/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-10879

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DBI versions before 1.648 for Perl have a heap overflow when preparsing SQL statements with more than 9 binders. The preparse method expands SQL placeholder...

9.8CVSS6.2AI score0.00413EPSS
Exploits0References2
redos
redos
added 2025/08/26 12:0 a.m.7 views

ROS-20250826-05

A vulnerability in the DBI module of the Perl DBI database interface is related to improper assignment of permissions to a a critical resource. Exploitation of the vulnerability allows an attacker to gain access to sensitive data, as well as cause a denial of service...

6.1CVSS7.3AI score0.00488EPSS
Exploits1
susecve
susecve
added 2023/02/15 5:33 a.m.6 views

SUSE CVE-2013-7491

An issue was discovered in the DBI module before 1.628 for Perl. Stack corruption occurs when a user-defined function requires a non-trivial amount of memory and the Perl stack gets reallocated...

7.8CVSS7.1AI score0.02656EPSS
Exploits0References4
susecve
susecve
added 2023/02/15 3:57 a.m.6 views

SUSE CVE-2020-14393

A buffer overflow was found in perl-DBI 1.643 in DBI.xs. A local attacker who is able to supply a string longer than 300 characters could cause an out-of-bounds write, affecting the availability of the service or integrity of data...

8.4CVSS7AI score0.00602EPSS
Exploits0References9
bdu_fstec
bdu_fstec
added 2022/09/28 12:0 a.m.12 views

The vulnerability of the DBI interface module of the Perl database library allows attackers to access confidential data and also cause service interruptions.

The vulnerability of the DBI interface module in Perl DBI is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability allows an attacker to access confidential data and also cause service failures...

6.2CVSS6.7AI score0.00488EPSS
Exploits1References11Affected Software4
bdu_fstec
bdu_fstec
added 2021/07/20 12:0 a.m.10 views

The vulnerability of the DBI programming language module in Perl, related to an unvalidated return value, allows attackers to trigger a service failure.

The vulnerability of the DBI programming language module in Perl is related to an unvalidated return value in the hvFetch function when checking for the presence of NULL. Exploiting this vulnerability could allow an attacker to cause a service failure...

4.7CVSS6.1AI score0.00505EPSS
Exploits0References9Affected Software3
osv
osv
added 2020/09/17 6:15 p.m.9 views

UBUNTU-CVE-2019-20919

An issue was discovered in the DBI module before 1.643 for Perl. The hvfetch documentation requires checking for NULL and the code does that. But, shortly thereafter, it calls SvOKprofile, causing a NULL pointer dereference...

4.7CVSS7.1AI score0.00505EPSS
Exploits0References4
osv
osv
added 2020/09/17 12:11 a.m.9 views

USN-4509-1 libdbi-perl vulnerabilities

It was discovered that Perl DBI module incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. CVE-2013-7490 It was discovered that Perl DBI module incorrectly handled certain files. An attacker could possibly use this issue to expose sensitive...

6.1CVSS6.9AI score0.02738EPSS
Exploits0References3
osv
osv
added 2020/09/16 4:15 p.m.4 views

DEBIAN-CVE-2014-10402

An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the fdir attribute in the data source name DSN. NOTE: this issue exists because of an incomplete fix for CVE-2014-10401...

6.1CVSS6.8AI score0.00488EPSS
Exploits1References1
osv
osv
added 2020/09/16 2:15 p.m.6 views

ALPINE-CVE-2020-14393

A buffer overflow was found in perl-DBI 1.643 in DBI.xs. A local attacker who is able to supply a string longer than 300 characters could cause an out-of-bounds write, affecting the availability of the service or integrity of data...

7.1CVSS7AI score0.00602EPSS
Exploits0References1
osv
osv
added 2020/09/16 2:15 p.m.4 views

DEBIAN-CVE-2020-14393

A buffer overflow was found in perl-DBI 1.643 in DBI.xs. A local attacker who is able to supply a string longer than 300 characters could cause an out-of-bounds write, affecting the availability of the service or integrity of data...

7.1CVSS7.4AI score0.00602EPSS
Exploits0References1
osv
osv
added 2020/09/16 1:15 p.m.6 views

ALPINE-CVE-2020-14392

An untrusted pointer dereference flaw was found in Perl-DBI 1.643. A local attacker who is able to manipulate calls to dbddblogin6sv could cause memory corruption, affecting the service's availability...

5.5CVSS6.4AI score0.00576EPSS
Exploits0References1
osv
osv
added 2020/09/16 12:50 p.m.9 views

USN-4503-1 libdbi-perl vulnerability

It was discovered that Perl DBI module incorrectly handled certain calls. An attacker could possibly use this issue to execute arbitrary code...

5.5CVSS6.8AI score0.00576EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2020/09/16 12:0 a.m.5 views

PT-2020-6752 · Dbi +5 · Dbi +5

Name of the Vulnerable Software and Affected Versions: DBI module through 1.643 for Perl Description: The issue is related to the DBI module for Perl, where the DBD::File drivers can open files from folders other than those specifically passed via the f dir attribute in the data source name DSN...

7.1CVSS5.9AI score0.00602EPSS
Exploits1References57
osv
osv
added 2020/09/11 7:15 p.m.16 views

UBUNTU-CVE-2014-10401

An issue was discovered in the DBI module before 1.632 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the fdir attribute...

6.1CVSS6.7AI score0.0044EPSS
Exploits0References5
osv
osv
added 2020/09/11 12:0 a.m.5 views

UBUNTU-CVE-2020-14392

An untrusted pointer dereference flaw was found in Perl-DBI 1.643. A local attacker who is able to manipulate calls to dbddblogin6sv could cause memory corruption, affecting the service's availability...

5.5CVSS6.5AI score0.00576EPSS
Exploits0References3
Rows per page
Query Builder