CNNVD-202507-2231 Information

CNNVD ID

CNNVD-202507-2231

Related CVE

CVE-2025-40913

• CNNVD Published: 2025-07-16

Description (Chinese)

MetaCPAN Net::Dropbear是MetaCPAN基金会的一个轻量级的SSH服务器和客户端软件。 MetaCPAN Net::Dropbear 0.16及之前版本存在安全漏洞，该漏洞源于包含一个可能容易受到整数溢出影响的依赖项。

Description (English)

MetaCPAN Net: Dropbear is a lightweight SSH server and client software of the MetaCPAN Foundation. MetaCPAN Net: :Dropbear 0.16 and previous versions contain a security loophole that stems from the inclusion of a dependencies that may be vulnerable to integer spills.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Metal3

Published

2025-07-16

Last Modified

2026-02-24

References

https://github.com/advisories/GHSA-j3xv-6967-cv88 https://github.com/libtom/libtommath/pull/546 https://metacpan.org/release/ATRODO/Net-Dropbear-0.16/source/dropbear/libtommath/bn_mp_grow.c https://www.cve.org/CVERecord?id=CVE-2023-36328