cbcvebase.
CVE-2002-1323
published 2002-12-11

CVE-2002-1323: Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using…

PriorityP49medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EPSS
0.46%
36.7th percentile
Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successive calls.

Affected

47 ranges· showing 25
VendorProductVersion rangeFixed in
debianperl< perl 5.8.0-14 (bookworm)perl 5.8.0-14 (bookworm)
perlperl>= 0 < 5.8.0-145.8.0-14
perlperl>= 0 < 5.8.0-145.8.0-14
perlperl>= 0 < 5.8.0-145.8.0-14
perlperl>= 0 < 5.8.0-145.8.0-14
redhatenterprise_linux
redhatlinux_advanced_workstation
safe.pmsafe.pm
safe.pmsafe.pm
scoopen_unix
scounixware
scounixware
sgiirix
sgiirix
sgiirix
sgiirix
sgiirix
sgiirix
sgiirix
sgiirix
sgiirix
sgiirix
sgiirix
sgiirix
sgiirix

CVSS provenance

nvdv2.04.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
osv4.6MEDIUM
vendor_debian4.6MEDIUM
vendor_redhat4.6MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.