Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:44 a.m.4 views

SUSE CVE-2012-4466

Ruby 1.8.7 before patchlevel 371, 1.9.3 before patchlevel 286, and 2.0 before revision r37068 allows context-dependent attackers to bypass safe-level restrictions and modify untainted strings via the nameerrmesgtostr API function, which marks the string as tainted, a different vulnerability than...

5CVSS7.7AI score0.02619EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:11 a.m.3 views

SUSE CVE-2015-8607

The canonpath function in the File::Spec module in PathTools before 3.62, as used in Perl, does not properly preserve the taint attribute of data, which might allow context-dependent attackers to bypass the taint protection mechanism via a crafted string...

7.5CVSS8.5AI score0.03124EPSS
Exploits0References3
OSV
OSV
added 2016/09/25 10:59 a.m.5 views

CVE-2016-4748

Perl in Apple OS X before 10.12 allows local users to bypass the taint-mode protection mechanism via a crafted environment variable...

5.3CVSS7.3AI score0.00313EPSS
Exploits0References4
OSV
OSV
added 2016/04/08 3:59 p.m.1 views

DEBIAN-CVE-2016-2381

Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp...

7.5CVSS9.1AI score0.09007EPSS
Exploits0References1
OSV
OSV
added 2016/03/02 1:37 p.m.4 views

USN-2916-1 perl vulnerabilities

It was discovered that Perl incorrectly handled certain regular expressions with an invalid backreference. An attacker could use this issue to cause Perl to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2013-7422 Markus Vervier discovered that Perl incorrectly...

7.5CVSS6.9AI score0.09007EPSS
Exploits3References4
OSV
OSV
added 2016/03/01 12:0 a.m.4 views

UBUNTU-CVE-2016-2381

Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp...

7.5CVSS7.1AI score0.09007EPSS
Exploits0References3
OSV
OSV
added 2011/04/11 6:55 p.m.0 views

DEBIAN-CVE-2011-1487

The 1 lc, 2 lcfirst, 3 uc, and 4 ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the taint attribute to the return value upon processing tainted input, which might allow context-dependent attackers to bypass the taint protection...

5CVSS6.4AI score0.08712EPSS
Exploits1References1
Rows per page
Query Builder