Known Vulnerabilities for products from Perl
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Perl".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-5087 | Not Provided | 2026-03-31 | 2026-04-01 | |
| CVE-2026-4851 | Not Provided | 2026-03-29 | 2026-04-01 | |
| CVE-2026-4176 | Not Provided | 2026-03-29 | 2026-03-30 | |
| CVE-2026-3256 | Not Provided | 2026-03-28 | 2026-04-01 | |
| CVE-2025-15618 | Not Provided | 2026-03-31 | 2026-03-31 | |
| CVE-2025-15604 | Not Provided | 2026-03-28 | 2026-04-01 | |
| CVE-2024-14031 | Not Provided | 2026-03-31 | 2026-04-01 | |
| CVE-2024-14030 | Not Provided | 2026-03-31 | 2026-04-01 | |
| CVE-2021-36770 | Encode.pm, as distributed in Perl through 5.34.0, allows local users to gain privileges via a Trojan horse Encode::ConfigLoca... | 7.8 - HIGH | 2021-08-11 | 2023-11-07 |
| CVE-2020-16156 | CPAN 2.28 allows Signature Verification Bypass. | 7.8 - HIGH | 2021-12-13 | 2023-11-07 |
| CVE-2020-14393 | A buffer overflow was found in perl-DBI < 1.643 in DBI.xs. A local attacker who is able to supply a string longer than 300 ch... | 7.1 - HIGH | 2020-09-16 | 2023-11-07 |
| CVE-2020-14392 | An untrusted pointer dereference flaw was found in Perl-DBI < 1.643. A local attacker who is able to manipulate calls to dbd_... | 5.5 - MEDIUM | 2020-09-16 | 2023-11-07 |
| CVE-2020-12723 | regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk ... | 7.5 - HIGH | 2020-06-05 | 2023-11-07 |
| CVE-2020-10878 | Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted re... | 8.6 - HIGH | 2020-06-05 | 2023-11-07 |
| CVE-2020-10543 | Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have... | 8.2 - HIGH | 2020-06-05 | 2023-11-07 |
| CVE-2019-20919 | An issue was discovered in the DBI module before 1.643 for Perl. The hv_fetch() documentation requires checking for NULL and ... | 4.7 - MEDIUM | 2020-09-17 | 2023-11-07 |
| CVE-2018-18314 | Perl before 5.26.3 has a buffer overflow via a crafted regular expression that triggers invalid write operations. | 9.8 - CRITICAL | 2018-12-07 | 2023-11-07 |
| CVE-2018-18313 | Perl before 5.26.3 has a buffer over-read via a crafted regular expression that triggers disclosure of sensitive information ... | 9.1 - CRITICAL | 2018-12-07 | 2023-11-07 |
| CVE-2018-18312 | Perl before 5.26.3 and 5.28.0 before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid writ... | 9.8 - CRITICAL | 2018-12-05 | 2023-11-07 |
| CVE-2018-18311 | Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid writ... | 9.8 - CRITICAL | 2018-12-07 | 2023-11-07 |
Known software with vulnerabilities from Perl
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Perl | Database Interface | 1.601 |
| Application | Perl | Pathtools | 3.61 |
| Application | Perl | Perl | - |