Karl Williamson

3 exploits Active since Dec 2018
CVE-2018-18313 WRITEUP CRITICAL WRITEUP
Perl < 5.26.3 - Out-of-Bounds Read
Perl before 5.26.3 has a buffer over-read via a crafted regular expression that triggers disclosure of sensitive information from process memory.
CVSS 9.1
CVE-2020-10878 WRITEUP HIGH WRITEUP
Perl <5.30.3 - Code Injection
Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.
CVSS 8.6
CVE-2023-47038 WRITEUP HIGH WRITEUP
Perl < 5.38.0 - Out-of-Bounds Write
A vulnerability was found in perl 5.30.0 through 5.38.0. This issue occurs when a crafted regular expression is compiled by perl, which can allow an attacker controlled byte buffer overflow in a heap allocated buffer.
CVSS 7.0