CVE-2011-4116

SOURCE - nist

Summary

_is_safe in the File::Temp module for Perl does not properly handle symlinks.

EPSS Score⁠: 0.00243 (0.642)

Common Weakness Enumeration (CWE)

SOURCE - nist

CWE-59⁠

Improper Link Resolution Before File Access ('Link Following')

SOURCE - redhat

CWE-283⁠

Unverified Ownership

Sources (5)

Impacted images

debian

CREATED

4 years ago

UPDATED

17 days ago

SOURCE IDCVE-2011-4116⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Package	Type	OS Name	OS Version	Affected Ranges	Fix Versions
debian/perl	deb	debian	12	>=5.36.0-7+deb12u1	Not yet available
debian/perl	deb	debian	unstable	>=5.38.2-4	Not yet available
debian/perl	deb	debian	11	>=5.32.1-4+deb11u3	Not yet available
debian/perl	deb	debian	13	>=5.38.2-4	Not yet available
debian/perl	deb	debian	10	>=5.28.1-6+deb10u1	Not yet available

Severity and metrics

No CVSS data available from this source.

nist

CREATED

4 years ago

UPDATED

4 years ago

SOURCE IDCVE-2011-4116⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-59⁠

CVSS SCORE

7.5high

ubuntu

CREATED

4 years ago

UPDATED

1 month ago

SOURCE IDCVE-2011-4116⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7.5low

redhat

CREATED

13 years ago

UPDATED

10 months ago

SOURCE IDCVE-2011-4116⁠

EXPLOITABILITY SCORE

3.4

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-283⁠

CVSS SCORE

1.9low

inthewild

CREATED

10 months ago

UPDATED

10 months ago

SOURCE IDCVE-2011-4116⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE