CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
25.6%
Untrusted search path vulnerability in Perl before 5.8.7-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | perl | < 5.36.0-7+deb12u1 | perl_5.36.0-7+deb12u1_all.deb |
Debian | 11 | all | perl | < 5.32.1-4+deb11u3 | perl_5.32.1-4+deb11u3_all.deb |
Debian | 999 | all | perl | < 5.38.2-5 | perl_5.38.2-5_all.deb |
Debian | 13 | all | perl | < 5.38.2-5 | perl_5.38.2-5_all.deb |