CVE-2026-46720

CVSS v3.1

8.2

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

Name of the Vulnerable Software and Affected Versions Net::Statsd::Tiny versions prior to 0.3.8

Description Net::Statsd::Tiny for Perl allows metric injections because metric names and set values are not validated for newlines, colons, or pipes. This allows metrics generated from untrusted sources to inject additional statsd metrics.

Recommendations Update to version 0.3.8 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-93

Related Identifiers

CVE-2026-46720

Affected Products

Net::Statsd::Tiny

CVE-2026-46720

Weakness Enumeration

Related Identifiers

Affected Products

References · 9