CVE-2014-10402
MEDIUM6.1EPSS 0.02%libdbi-perl - security update
發布日:2020/9/16修改日:2026/4/28
描述
An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute in the data source name (DSN). NOTE: this issue exists because of an incomplete fix for CVE-2014-10401.
受影響套件(3)
- Alpine/perl-dbifrom 0, < 1.643-r0
- Debian/libdbi-perlfrom 0, < 1.643-3
- Debian/libdbi-perlfrom 0, < 1.636-1+deb9u2
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.1 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L |