PT-2021-9866 · Unknown+4 · App::Cpanminus+4

Stig Palmquist

Published

2021-12-13

Updated

2024-10-02

CVE-2020-16154

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions App::cpanminus version 1.7044

Description The issue allows Signature Verification Bypass.

Recommendations For version 1.7044, update to a version that fixes the Signature Verification Bypass issue.

Exploit

Fix

Improper Verification of Cryptographic Signature

Found an issue in the description? Have something to add? Feel free to write us 👾

ALT-PU-2022-1154

ALT-PU-2022-2519

ALT-PU-2024-13289

CVE-2020-16154

MGASA-2022-0078

OPENSUSE-SU-2022:0074-1

OPENSUSE-SU-2024:11783-1

USN-5230-1

Alt Linux

App::Cpanminus

Debian

Linuxmint

Ubuntu