Skip to main content

Perltidy

2 CVEs product

Monthly

CVE-2014-2277 HIGH This Week

The make_temporary_filename function in perltidy 20120701-1 and earlier allows local users to obtain sensitive information or write to arbitrary files via a symlink attack, related to use of the. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Perltidy
NVD
CVSS 3.1
7.1
EPSS
0.1%
CVE-2016-10374 MEDIUM This Month

perltidy through 20160302, as used by perlcritic, check-all-the-things, and other software, relies on the current working directory for certain output files and does not have a symlink-attack. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Perltidy
NVD
CVSS 3.1
5.5
EPSS
0.0%
EPSS 0% CVSS 7.1
HIGH This Week

The make_temporary_filename function in perltidy 20120701-1 and earlier allows local users to obtain sensitive information or write to arbitrary files via a symlink attack, related to use of the. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Perltidy
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

perltidy through 20160302, as used by perlcritic, check-all-the-things, and other software, relies on the current working directory for certain output files and does not have a symlink-attack. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Perltidy
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy