PT-2024-11203 · Unknown+1 · Net::Ipv4Addr+1
Published
2024-03-17
·
Updated
2024-08-29
·
CVE-2021-47155
CVSS v3.1
9.1
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Net::IPV4Addr module version 0.10 for Perl
Description
The issue arises from the Net::IPV4Addr module's improper handling of extraneous zero characters in IP address strings. This can lead to the bypassing of access control mechanisms that rely on IP addresses.
Recommendations
For Net::IPV4Addr module version 0.10, consider updating to a newer version that properly handles IP address strings to prevent access control bypass.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Debian
Net::Ipv4Addr