CVE-2026-9698

Published: Giu 09, 2026 Last Modified: Giu 09, 2026
ExploitDB:
Other exploit source:
Google Dorks:
CRITICAL 9,8
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high

Description

AI Translation Available

DBI versions before 1.648 for Perl saved errors in a limited-sized buffer.

Error messages that were returned when RaiseError, PrintError or HandleError were set were written to a 200-byte buffer without a length limit.

Attackers that can influence the error text in an application can trigger a buffer overflow.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0071
Percentile
0,5th
Updated

EPSS Score Trend (Last 7 Days)

787

Out-of-bounds Write

Draft
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Integrity Availability Other
Potential Impacts:
Modify Memory Execute Unauthorized Code Or Commands Dos: Crash, Exit, Or Restart Unexpected State
Applicable Platforms
Languages: Memory-Unsafe, C, C++, Assembly
Technologies: ICS/OT
Likelihood of Exploit: High
View CWE Details
Application

Dbi by Perl

Product Information
Vendor Perl
Product Dbi
Version Range Affected
To 1.648 (exclusive)
cpe:2.3:a:perl:dbi:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://github.com/perl5-dbi/dbi/commit/bfe5d73c162d2d1f761…
https://github.com/perl5-dbi/dbi/commit/bfe5d73c162d2d1f761a639a0aa33aad6a9eb54…
https://metacpan.org/release/HMBRAND/DBI-1.648/changes
https://metacpan.org/release/HMBRAND/DBI-1.648/changes
http://www.openwall.com/lists/oss-security/2026/06/09/9
http://www.openwall.com/lists/oss-security/2026/06/09/9