CVE-2026-60082 in DBIinfo

Summary

by MITRE • 07/14/2026

DBI versions before 1.651 for Perl do not enforce statement handle consistency with the row.

When the statement handle had no fields but the source row was non-empty, the internal row-buffer helper would read from a negative array index.

This could be triggered by a caller supplying inconsistent metadata and rows to the prepare method.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Responsible

CPANSec

Reservation

07/08/2026

Disclosure

07/14/2026

Moderation

accepted

CPE

ready

EPSS

0.00000

KEV

no

Activities

very low

Sources

Do you need the next level of professionalism?

Upgrade your account now!