VDB
CVE-2018-25100
CVE-2018-25100
PUBLISHED
The Mojolicious module before 7.66 for Perl may leak cookies in certain situations related to multiple similar cookies for the same domain. This affects Mojo::UserAgent::CookieJar.
EPSS 0.08% · 23.1th percentile
Risk Scores
EPSS Score
0.08%
23.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:18.04:LTS | libmojolicious-perl | 0, 7.39+dfsg-1ubuntu1, 7.57+dfsg-1ubuntu1 |
| Ubuntu:16.04:LTS | libmojolicious-perl | 0, 6.15+dfsg-1, 6.15+dfsg-1ubuntu1 |
Exploit Intelligence
Timeline
- Mar 24, 2024 CVE Published
- Mar 24, 2024 EPSS Score
- Apr 19, 2024 EPSS Score
- May 15, 2024 EPSS Score
- Jun 9, 2024 EPSS Score
- Jul 5, 2024 EPSS Score
- Jul 31, 2024 EPSS Score
- Aug 26, 2024 EPSS Score
- Sep 21, 2024 EPSS Score
- Oct 16, 2024 EPSS Score
- Nov 11, 2024 EPSS Score
- Dec 8, 2024 EPSS Score
References
- https://ubuntu.com/security/CVE-2018-25100 third-party-advisory
- https://github.com/mojolicious/mojo/pull/1192 third-party-advisory
- https://github.com/mojolicious/mojo/commit/c16a56a9d6575ddc53d15e76d58f0ebcb0eeb149 third-party-advisory
- https://metacpan.org/dist/Mojolicious/changes third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2018-25100 third-party-advisory