Perlmonks : Security Vulnerabilities, CVEs,
The cpansign verify functionality in the Module::Signature module before 0.72 for Perl allows attackers to bypass the signature check and execute arbitrary code via a SIGNATURE file with a "special unknown cipher" that references an untrusted module in Digest/.
Max CVSS
4.4
EPSS Score
0.09%
Published
2013-08-19
Updated
2018-10-30
1 vulnerabilities found