Primary

Context

Crypt::DSA Two-Argument Open Vulnerability in Perl Allowing File Modification

Vulnerability

A vulnerability exists in Crypt::DSA versions through 1.19 for Perl, where the module uses two-argument open calls. This practice allows existing files to be modified, creating a potential risk for unintended file alterations.

Impact

Exploitation of this vulnerability could lead to unauthorized modifications of files, potentially causing data loss or corruption.

Remediation

Users can upgrade to Crypt::DSA version 1.20, which addresses this vulnerability by replacing the two-argument open calls with safer alternatives. Instructions for downloading the updated version are available on MetaCPAN.

Added: May 15, 2026, 11:19 PM

Updated: May 15, 2026, 11:19 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.1

remediation

0.0

relevance

8.4

threat

3.2

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.1

remediation

0.0

relevance

8.4

threat

3.2

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Crypt::DSA Two-Argument Open Vulnerability in Perl Allowing File Modification

Vulnerability

Impact

Remediation

Affected Products

Crypt::DSA

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating