CVE-2013-4184

MEDIUM

Data::UUID < 1.224 - Symlink Attack via Improper Link Resolution

Title source: llm
STIX 2.1

Description

Perl module Data::UUID from CPAN version 1.219 vulnerable to symlink attacks

References (13)

Core 13
Core References
Mailing List, Third Party Advisory
http://www.openwall.com/lists/oss-security/2013/07/31/4
Third Party Advisory, VDB Entry
http://www.securityfocus.com/bid/61534
Broken Link, Third Party Advisory
https://access.redhat.com/security/cve/cve-2013-4184
Issue Tracking, Third Party Advisory
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2013-4184

Scores

CVSS v3 5.5
EPSS 0.0050
EPSS Percentile 39.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-59
Status published
Products (4)
data\/\ < 1.224
debian/debian_linux 8.0
debian/debian_linux 9.0
debian/debian_linux 10.0
Published Dec 10, 2019
Tracked Since Feb 18, 2026