Known Vulnerabilities for Module-signature by Module-signature Project
Listed below are 4 of the newest known vulnerabilities associated with "Module-signature" by "Module-signature Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2015-3409 | Untrusted search path vulnerability in Module::Signature before 0.75 allows local users to gain privileges via a Trojan horse... | 7.2 - HIGH | 2015-05-19 | 2017-11-04 |
| CVE-2015-3408 | Module::Signature before 0.74 allows remote attackers to execute arbitrary shell commands via a crafted SIGNATURE file which ... | 10 - HIGH | 2015-05-19 | 2017-11-04 |
| CVE-2015-3407 | Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that do... | 5 - MEDIUM | 2015-05-19 | 2017-11-04 |
| CVE-2015-3406 | The PGP signature parsing in Module::Signature before 0.74 allows remote attackers to cause the unsigned portion of a SIGNATU... | 7.5 - HIGH | 2019-11-29 | 2019-12-16 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Module-signature Project | Module-signature | 0.74 | All | All | All |
| Application | Module-signature Project | Module-signature | 0.73 | All | All | All |