PT-2022-24696 · Alt Linux · Alt Linux

Published

2021-09-29

Updated

2024-08-06

CVE-2022-39051

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Template toolkit (affected versions not specified) ALT Linux (affected versions not specified)

Description The issue allows an attacker to potentially execute malicious Perl code in the Template toolkit by installing an unverified third-party package. This could be exploited if an admin installs such a package.

Recommendations For Template toolkit, avoid installing unverified third-party packages until a fix is available. For ALT Linux, refrain from installing unverified packages from third-party sources as a precautionary measure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-913

Related Identifiers

ALT-PU-2021-2917

ALT-PU-2021-3039

ALT-PU-2021-3058

ALT-PU-2024-10583

CVE-2022-39051

Affected Products

Alt Linux

PT-2022-24696 · Alt Linux · Alt Linux

CVE-2022-39051

Weakness Enumeration

Related Identifiers

Affected Products

References · 6