Data Dumper Project : Security Vulnerabilities, CVEs,
The Dumper method in Data::Dumper before 2.154, as used in Perl 5.20.1 and earlier, allows context-dependent attackers to cause a denial of service (stack consumption and crash) via an Array-Reference with many nested Array-References, which triggers a large number of recursive calls to the DD_dump function.
Max CVSS
2.1
EPSS Score
0.13%
Published
2014-09-30
Updated
2018-10-09
1 vulnerabilities found