Roderich Schupp

**Name of the Vulnerable Software and Affected Versions** Modules::ScanDeps versions prior to 1.36 **Description** The issue is related to the Modules::ScanDeps library, which does not properly sanitize input. This can allow an attacker to execute arbitrary shell commands. A local attacker could exploit this by passing unsanitized input to the library, potentially allowing them to run commands as root. **Recommendations** For versions prior to 1.36, update to version 1.36 or later to resolve the issue. As a temporary workaround, consider restricting the use of the Modules::ScanDeps library until a patch is applied. Avoid using unsanitized input with the library to minimize the risk of exploitation.