CVE-2023-31484

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2023-31484

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-31484.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-31484

Downstream

AZL-37126

BELL-CVE-2023-31484

CLSA-2023-1686586380

CLSA-2023-1686858536

CLSA-2023-1686859226

CLSA-2023-1698312967

CLSA-2023-1701293817

CLSA-2025-1758821935

CLSA-2025-1758822697

CLSA-2025-1759497192

CLSA-2025-1761323893

CLSA-2026-1768223815

CLSA-2026-1768224107

DEBIAN-CVE-2023-31484

DLA-3926-1

ECHO-0985-0297-4ba8

MGASA-2025-0274

MGASA-2025-0276

OESA-2023-1287

OESA-2023-1420

RHSA-2023:6539

RHSA-2024:3094

RHSA-2026:0079

RHSA-2026:7604

RLSA-2023:6539

RLSA-2024:3094

ROOT-OS-DEBIAN-12-CVE-2023-31484

SUSE-SU-2023:2881-1

SUSE-SU-2023:2882-1

SUSE-SU-2024:1630-1

UBUNTU-CVE-2023-31484

USN-6112-1

USN-6112-2

Related

Published

2023-04-28T00:00:00Z

Modified

2026-06-30T04:05:56.817873950Z

Severity

8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS.

Database specific

{
    "cna_assigner": "mitre",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/31xxx/CVE-2023-31484.json"
}

References

Affected packages

Git / github.com/andk/cpanpm

Affected ranges

Type

GIT

Repo

https://github.com/andk/cpanpm

Events

Introduced

Fixed

b69df18c4e8d7a6764aac7ba86461f6754fc25e7

Database specific

{
    "source": [
        "DESCRIPTION",
        "CPE_RANGE"
    ],
    "extracted_events": [
        {
            "introduced": "CPAN.pm"
        },
        {
            "fixed": "2.35"
        },
        {
            "introduced": "0"
        },
        {
            "fixed": "2.35"
        }
    ],
    "cpe": "cpe:2.3:a:cpanpm_project:cpanpm:*:*:*:*:*:*:*:*"
}

Affected versions

1.*

1.93_51

1.93_52

1.93_53

1.93_54

1.94_52

1.94_53

1.94_54

1.94_55

1.94_56

1.94_57

1.94_58

1.94_59

1.94_60

1.94_61

1.94_62

1.94_63

1.94_64

1.94_65

1.9600

1.97_51

1.9800

2.*

2.00

2.00-TRIAL

2.01-TRIAL

2.02-TRIAL

2.03-TRIAL

2.04-TRIAL

2.05

2.05-TRIAL

2.05-TRIAL2

2.06-TRIAL

2.07-TRIAL

2.08-TRIAL

2.09-TRIAL

2.10

2.10-TRIAL

2.12-TRIAL

2.13-TRIAL

2.14

2.14-TRIAL

2.15-TRIAL

2.16

2.16-TRIAL

2.16-TRIAL2

2.17-TRIAL

2.17-TRIAL2

2.18-TRIAL

2.20-TRIAL

2.21-TRIAL

2.22

2.22-TRIAL

2.23-TRIAL

2.24-TRIAL

2.25

2.25-TRIAL

2.26

2.27

2.27-TRIAL

2.27-TRIAL2

2.29

2.30-TRIAL

2.31-TRIAL

2.32-TRIAL

2.33

2.33-TRIAL

2.34

2.34-TRIAL

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-31484.json"