4 matches found
EUVD-2021-34770
Net::CIDR versions before 0.24 for Perl mishandle leading zeros in IP CIDR addresses, which may have unspecified impact. The functions addr2cidr and cidrlookup may return leading zeros in a CIDR string, which may in turn be parsed as octal numbers by subsequent users. In some cases an attacker ma...
CVE-2021-4456
Net::CIDR versions before 0.24 for Perl mishandle leading zeros in IP CIDR addresses, which may have unspecified impact. The functions addr2cidr and cidrlookup may return leading zeros in a CIDR string, which may in turn be parsed as octal numbers by subsequent users. In some cases an attacker ma...
CVE-2021-4456
CVE-2021-4456 affects the Perl module Net::CIDR (versions before 0.24). The issue stems from leading zeros in CIDR notation, where addr2cidr and cidrlookup may emit leading zeros thatParsing as octal could bypass IP-based restrictions. Fedora/OpenSUSE advisories note fixes have been released: Fed...
PT-2026-22248
Name of the Vulnerable Software and Affected Versions Net::CIDR versions prior to 0.24 Description The software mishandles leading zeros in IP CIDR addresses, potentially leading to an unspecified impact. The addr2cidr and cidrlookup functions can return leading zeros within a CIDR string, which...