Debian Cpanminus vulnerabilities
2 known vulnerabilities affecting debian/cpanminus.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2024-45321HIGHCVSS 8.12024
CVE-2024-45321 [HIGH] CVE-2024-45321: cpanminus - The App::cpanminus package through 1.7047 for Perl downloads code via insecure H...
The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers.
Scope: local
bookworm: open
bullseye: open
forky: open
sid: open
trixie: open
debian
CVE-2020-16154HIGHCVSS 7.8fixed in cpanminus 1.7045-1 (bookworm)2020
CVE-2020-16154 [HIGH] CVE-2020-16154: cpanminus - The App::cpanminus package 1.7044 for Perl allows Signature Verification Bypass.
The App::cpanminus package 1.7044 for Perl allows Signature Verification Bypass.
Scope: local
bookworm: resolved (fixed in 1.7045-1)
bullseye: open
forky: resolved (fixed in 1.7045-1)
sid: resolved (fixed in 1.7045-1)
trixie: resolved (fixed in 1.7045-1)
debian