Stack-based Crash Vulnerability in Perl 5.34.0: Remote Code Execution and Local Privilege Escalation

Stack-based Crash Vulnerability in Perl 5.34.0: Remote Code Execution and Local Privilege Escalation

CVE-2022-48522 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

In Perl 5.34.0, function S_find_uninit_var in sv.c has a stack-based crash that can lead to remote code execution or local privilege escalation.

Learn more about our Web Application Penetration Testing UK.