CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

OSV•added 2026/05/12 12:0 a.m.•0 views

OPENSUSE-SU-2026:10757-1 perl-Starman-0.4018-1.1 on GA media

These are all security issues fixed in the perl-Starman-0.4018-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.00016EPSS

Exploits0References1

Fedora•added 2026/05/08 1:24 a.m.•7 views

[SECURITY] Fedora 42 Update: perl-Starman-0.4018-1.fc42

Starman is a PSGI perl web server that has unique features such as high performance, preforking, use of signals and a small memory footprint. It is P SGI compatible and offers HTTP/1.1 support...

7.5CVSS5.8AI score0.00016EPSS

Exploits0

Fedora•added 2026/05/08 1:3 a.m.•5 views

[SECURITY] Fedora 43 Update: perl-Starman-0.4018-1.fc43

Starman is a PSGI perl web server that has unique features such as high performance, preforking, use of signals and a small memory footprint. It is P SGI compatible and offers HTTP/1.1 support...

7.5CVSS5.8AI score0.00016EPSS

Exploits0

Tenable Nessus•added 2026/05/08 12:0 a.m.•2 views

Fedora 42 : perl-Starman (2026-4cca750484)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-4cca750484 advisory. Starman versions before 0.4018 for Perl allows HTTP Request Smuggling via Improper Header Precedence. Starman incorrectly prioritizes Content-Length over...

7.5CVSS5.8AI score0.00016EPSS

Exploits0References2

Tenable Nessus•added 2026/05/08 12:0 a.m.•3 views

Fedora 43 : perl-Starman (2026-b94aad33a5)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-b94aad33a5 advisory. Starman versions before 0.4018 for Perl allows HTTP Request Smuggling via Improper Header Precedence. Starman incorrectly prioritizes Content-Length over...

7.5CVSS5.9AI score0.00016EPSS

Exploits0References2

OSV•added 2026/05/07 5:6 a.m.•2 views

MGASA-2026-0119 Updated perl-Starman packages fix security vulnerability

Starman versions before 0.4018 for Perl allow HTTP Request Smuggling via Improper Header Precedence. Starman incorrectly prioritizes "Content-Length" over "Transfer-Encoding: chunked" when both headers are present in an HTTP request. Per RFC 7230 3.3.3, Transfer-Encoding must take precedence. An...

7.5CVSS5.8AI score0.00016EPSS

Exploits0References5

Mageia•added 2026/05/07 5:6 a.m.•5 views

Updated perl-Starman packages fix security vulnerability

7.5CVSS5.8AI score0.00016EPSS

Exploits0References4

Tenable Nessus•added 2026/05/07 12:0 a.m.•1 views

Fedora 44 : perl-Starman (2026-5bb108e1b7)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-5bb108e1b7 advisory. Starman versions before 0.4018 for Perl allows HTTP Request Smuggling via Improper Header Precedence. Starman incorrectly prioritizes Content-Length over...

7.5CVSS5.8AI score0.00016EPSS

Exploits0References2

SUSE CVE•added 2026/04/30 2:25 a.m.•2 views

SUSE CVE-2026-40560

Starman versions before 0.4018 for Perl allows HTTP Request Smuggling via Improper Header Precedence. Starman incorrectly prioritizes "Content-Length" over "Transfer-Encoding: chunked" when both headers are present in an HTTP request. Per RFC 7230 3.3.3, Transfer-Encoding must take precedence. An...

7.5CVSS5.2AI score0.00016EPSS

Exploits0References3

RedhatCVE•added 2026/04/29 12:11 p.m.•2 views

CVE-2026-40560

A flaw was found in Starman. Starman versions before 0.4018 for Perl incorrectly prioritize the "Content-Length" header over "Transfer-Encoding: chunked" when both are present in an HTTP request, violating RFC 7230 3.3.3. A remote attacker could exploit this improper header precedence to perform...

7.5CVSS5.3AI score0.00016EPSS

Exploits0References2

OSV•added 2026/04/29 12:16 a.m.•2 views

DEBIAN-CVE-2026-40560

7.5CVSS5.4AI score0.00016EPSS

Exploits0References1

NVD•added 2026/04/29 12:16 a.m.•0 views

CVE-2026-40560

7.5CVSS0.00016EPSS

Exploits0References4

OSV•added 2026/04/29 12:16 a.m.•0 views

UBUNTU-CVE-2026-40560

7.5CVSS5.8AI score0.00016EPSS

Exploits0References3

CNNVD•added 2026/04/29 12:0 a.m.•4 views

Starman 环境问题漏洞

Starman is a high-performance pre-derived web server developed by Tatsuhiko Miyagawa. Versions of Starman prior to 0.4018 contained an environmental issue vulnerability. This vulnerability stemmed from the HTTP request intercalation technique. Due to improper handling of header priorities, Starma...

7.5CVSS5.8AI score0.00016EPSS

Exploits0References1

Tenable Nessus•added 2026/04/29 12:0 a.m.•0 views

Linux Distros Unpatched Vulnerability : CVE-2026-40560

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Starman versions before 0.4018 for Perl allows HTTP Request Smuggling via Improper Header Precedence. Starman incorrectly prioritizes Content-Length over...

7.5CVSS5.8AI score0.00016EPSS

Exploits0References3

UbuntuCve•added 2026/04/29 12:0 a.m.•3 views

CVE-2026-40560

7.5CVSS5.8AI score0.00016EPSS

Exploits0References2

CVE•added 2026/04/28 11:46 p.m.•9 views

CVE-2026-40560

CVE-2026-40560 affects Starman for Perl prior to 0.4018. The vulnerability arises from improper header precedence: when both Content-Length and Transfer-Encoding: chunked are present, Starman incorrectly prioritizes Content-Length instead of the Transfer-Encoding rule, violating RFC 7230 section ...

7.5CVSS5.2AI score0.00016EPSS

Exploits0References4Affected Software1