Improper Verification of Cryptographic Signature Affecting perl package, versions *
Attack Complexity
Low
User Interaction
Required
Confidentiality
High
Integrity
High
Availability
High
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications-
snyk-id
SNYK-UBUNTU2204-PERL-2789081
-
published
25 Nov 2021
-
disclosed
13 Dec 2021
Introduced: 25 Nov 2021
CVE-2020-16156 Open this link in a new tabHow to fix?
There is no fixed version for Ubuntu:22.04
perl
.
NVD Description
Note: Versions mentioned in the description apply to the upstream perl
package.
CPAN 2.28 allows Signature Verification Bypass.