Login
From:
security.metacpan.org
(Uncensored)
subscribe
App::cpanminus through 1.7047 downloads code using insecure HTTP
https://security.metacpan.org/2024/08/26/cpanminus-downloads-code-using-insecure-http.html
links
backlinks
Tagged with:
cve
CVE-2024-45321: In its default configuration cpanminus uses insecure HTTP to download and install code from CPAN. This results in a CWE-494 weakness, enabling code execution for network attackers.
Roast topics
Find topics
Find it!
