Yves Sereal vulnerabilities
2 known vulnerabilities affecting yves/sereal.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2024-14030HIGHCVSS 8.1≥ 4.000, < 4.0102026-03-31
CVE-2024-14030 [HIGH] CVE-2024-14030: Sereal::Decoder versions from 4.000 through 4.009_002 for Perl embeds a vulnerable version of the Zs
Sereal::Decoder versions from 4.000 through 4.009_002 for Perl embeds a vulnerable version of the Zstandard library.
Sereal::Decoder embeds a version of the Zstandard (zstd) library that is vulnerable to CVE-2019-11922. This is a race condition in the one-pass compression functions of Zstandard prior to version 1.3.8 could allow an attacker to write bytes ou
nvd
CVE-2024-14031HIGHCVSS 8.1≥ 4.000, < 4.0102026-03-31
CVE-2024-14031 [HIGH] CVE-2024-14031: Sereal::Encoder versions from 4.000 through 4.009_002 for Perl embeds a vulnerable version of the Zs
Sereal::Encoder versions from 4.000 through 4.009_002 for Perl embeds a vulnerable version of the Zstandard library.
Sereal::Encoder embeds a version of the Zstandard (zstd) library that is vulnerable to CVE-2019-11922. This is a race condition in the one-pass compression functions of Zstandard prior to version 1.3.8 could allow an attacker to write bytes ou
nvd