CVE-2014-10402
Description
An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute in the data source name (DSN). NOTE: this issue exists because of an incomplete fix for CVE-2014-10401.
Risk Information
Base Score
6.1
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L
EPSS Score
Exploitation Probability
0.023
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Perl Database Interface (DBI) (USN-5030-1) libdbi-perl_1.640-1ubuntu0.3_i386.deb | Linux |
| Perl Database Interface (DBI) (USN-5030-1) libdbi-perl_1.640-1ubuntu0.3_amd64.deb | Linux |
| Perl Database Interface (DBI) (USN-5030-1) libdbi-perl_1.643-1ubuntu0.1_i386.deb | Linux |
| Perl Database Interface (DBI) (USN-5030-1) libdbi-perl_1.643-1ubuntu0.1_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234