CVE-2026-46739 in Net::Statsd정보

요약

\~에 의해 MITRE • 2026. 06. 04.

Net::Statsd versions before 0.13 for Perl allow metric injections.

The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics.

The update_stats (used for updating counters) and gauge methods do not check that values are numeric (which would block metric injection).

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

CPANSec

예약하다

2026. 05. 17.

공개

2026. 06. 04.

모더레이션

수락

항목

VDB-368380

CPE

준비됨

CWE

CWE-93 (확인됨)

CVSS

7.3 (VulDB)

EPSS

0.00000

KEV

아니요

활동

낮음

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-46739
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-46739
CVE Details	https://www.cvedetails.com/cve/CVE-2026-46739/

◂ 이전 개요 다음 ▸

Do you know our Splunk app?

Download it now for free!