CVE-2010-4803

EPSS 0.46%
Veröffentlicht 03.05.2011 00:55:00
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Mojolicious before 0.999927 does not properly implement HMAC-MD5 checksums, which has unspecified impact and remote attack vectors.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Mojolicious ≫ Mojolicious Version <= 0.999926

Mojolicious ≫ Mojolicious Version0.2

Mojolicious ≫ Mojolicious Version0.3

Mojolicious ≫ Mojolicious Version0.4

Mojolicious ≫ Mojolicious Version0.5

Mojolicious ≫ Mojolicious Version0.6

Mojolicious ≫ Mojolicious Version0.7

Mojolicious ≫ Mojolicious Version0.8

Mojolicious ≫ Mojolicious Version0.8.1

Mojolicious ≫ Mojolicious Version0.8.2

Mojolicious ≫ Mojolicious Version0.8.3

Mojolicious ≫ Mojolicious Version0.8.4

Mojolicious ≫ Mojolicious Version0.8.5

Mojolicious ≫ Mojolicious Version0.9

Mojolicious ≫ Mojolicious Version0.8006

Mojolicious ≫ Mojolicious Version0.8007

Mojolicious ≫ Mojolicious Version0.8008

Mojolicious ≫ Mojolicious Version0.8009

Mojolicious ≫ Mojolicious Version0.9001

Mojolicious ≫ Mojolicious Version0.9002

Mojolicious ≫ Mojolicious Version0.991231

Mojolicious ≫ Mojolicious Version0.991232

Mojolicious ≫ Mojolicious Version0.991233

Mojolicious ≫ Mojolicious Version0.991234

Mojolicious ≫ Mojolicious Version0.991235

Mojolicious ≫ Mojolicious Version0.991236

Mojolicious ≫ Mojolicious Version0.991237

Mojolicious ≫ Mojolicious Version0.991238

Mojolicious ≫ Mojolicious Version0.991239

Mojolicious ≫ Mojolicious Version0.991240

Mojolicious ≫ Mojolicious Version0.991241

Mojolicious ≫ Mojolicious Version0.991242

Mojolicious ≫ Mojolicious Version0.991243

Mojolicious ≫ Mojolicious Version0.991244

Mojolicious ≫ Mojolicious Version0.991245

Mojolicious ≫ Mojolicious Version0.991246

Mojolicious ≫ Mojolicious Version0.991250

Mojolicious ≫ Mojolicious Version0.991251

Mojolicious ≫ Mojolicious Version0.999901

Mojolicious ≫ Mojolicious Version0.999902

Mojolicious ≫ Mojolicious Version0.999903

Mojolicious ≫ Mojolicious Version0.999904

Mojolicious ≫ Mojolicious Version0.999905

Mojolicious ≫ Mojolicious Version0.999906

Mojolicious ≫ Mojolicious Version0.999907

Mojolicious ≫ Mojolicious Version0.999908

Mojolicious ≫ Mojolicious Version0.999909

Mojolicious ≫ Mojolicious Version0.999910

Mojolicious ≫ Mojolicious Version0.999911

Mojolicious ≫ Mojolicious Version0.999912

Mojolicious ≫ Mojolicious Version0.999913

Mojolicious ≫ Mojolicious Version0.999914

Mojolicious ≫ Mojolicious Version0.999920

Mojolicious ≫ Mojolicious Version0.999921

Mojolicious ≫ Mojolicious Version0.999922

Mojolicious ≫ Mojolicious Version0.999923

Mojolicious ≫ Mojolicious Version0.999924

Mojolicious ≫ Mojolicious Version0.999925

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.46%	0.63

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=622952

Patch

http://cpansearch.perl.org/src/KRAIH/Mojolicious-1.20/Changes

http://www.debian.org/security/2011/dsa-2239

https://nvd.nist.gov/vuln/detail/CVE-2010-4803

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-4803

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-4803

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2010-4803