VDB
CVE-2013-10031
CVE-2013-10031
PUBLISHED
Plack-Middleware-Session versions before 0.17 may be vulnerable to HMAC comparison timing attacks
EPSS 0.04% · 12.9th percentile
Risk Scores
EPSS Score
0.04%
12.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | libplack-middleware-session-perl | 0.30-1, 0 |
| Ubuntu:18.04:LTS | libplack-middleware-session-perl | 0.30-1, 0, 0.30-2 |
| Ubuntu:20.04:LTS | libplack-middleware-session-perl | 0.33-1, 0.32-1, 0 |
Exploit Intelligence
- https://github.com/plack/Plack-Middleware-Session/commit/b7f0252269ba1bb812b5dc02303754fe94c808e4 (circl)
- seen_cves.json (github-poc)
- seen_cves.json (github-poc)
- seen_cves.json (github-poc)
- seen_cves.json (github-poc)
- seen_cves.json (github-poc)
Timeline
- Dec 9, 2025 EPSS Score
- Dec 9, 2025 CVE Published
- Dec 13, 2025 EPSS Score
- Dec 16, 2025 CVE Updated
- Dec 18, 2025 EPSS Score
- Dec 22, 2025 EPSS Score
- Dec 26, 2025 EPSS Score
- Dec 31, 2025 EPSS Score
- Jan 4, 2026 EPSS Score
- Jan 8, 2026 EPSS Score
- Jan 12, 2026 EPSS Score
- Jan 17, 2026 EPSS Score
References
- https://ubuntu.com/security/CVE-2013-10031 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2013-10031 third-party-advisory
- https://lists.security.metacpan.org/cve-announce/msg/35012183/ third-party-advisory
- https://github.com/plack/Plack-Middleware-Session/commit/b7f0252269ba1bb812b5dc02303754fe94c808e4 third-party-advisory