요금 엔터프라이즈

CVE-2024-45321

8.1HIGH

The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers.

게시됨: 8/27/2024업데이트됨: 12/5/2024

NVD에서 보기 MITRE에서 보기

설명

The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers.

AI 분석AI 기반

영향받는 제품

app\\

cpanminus_project

참조

https://github.com/miyagawa/cpanminus/issues/611
Issue Tracking
https://github.com/miyagawa/cpanminus/pull/674
Issue TrackingPatch
https://security.metacpan.org/2024/08/26/cpanminus-downloads-code-using-insecure-http.html
ExploitThird Party Advisory