{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2010-11-09T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "CRLF injection vulnerability in the header function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline characters, a different vulnerability than CVE-2010-2761 and CVE-2010-3172."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-12-06T18:57:01.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://perl5.git.perl.org/perl.git/blobdiff/a0b94c2432b1d8c20653453a0f6970cb10f59aec..84601d63a7e34958da47dad1e61e27cb3bd467d1:/cpan/CGI/lib/CGI.pm"}, {"name": "RHSA-2011:1797", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2011-1797.html"}, {"name": "FEDORA-2011-0653", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053591.html"}, {"name": "43068", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/43068"}, {"name": "[oss-security] 20101201 Re: CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2010/12/01/2"}, {"name": "[oss-security] 20101201 Re: CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2010/12/01/3"}, {"name": "ADV-2011-0212", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2011/0212"}, {"name": "MDVSA-2010:252", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:252"}, {"name": "44199", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/44199"}, {"name": "SUSE-SR:2011:005", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=658970"}, {"name": "SUSE-SR:2011:002", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://perl5.git.perl.org/perl.git/commit/84601d63a7e34958da47dad1e61e27cb3bd467d1"}, {"name": "ADV-2010-3230", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2010/3230"}, {"name": "ADV-2011-0249", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2011/0249"}, {"name": "45145", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/45145"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.nntp.perl.org/group/perl.perl5.changes/2010/11/msg28043.html"}, {"name": "MDVSA-2010:237", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:237"}, {"name": "[oss-security] 20101201 CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2010/12/01/1"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://cpansearch.perl.org/src/LDS/CGI.pm-3.50/Changes"}, {"name": "FEDORA-2011-0631", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053576.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705"}, {"name": "43147", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/43147"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2010-4410", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "CRLF injection vulnerability in the header function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline characters, a different vulnerability than CVE-2010-2761 and CVE-2010-3172."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://perl5.git.perl.org/perl.git/blobdiff/a0b94c2432b1d8c20653453a0f6970cb10f59aec..84601d63a7e34958da47dad1e61e27cb3bd467d1:/cpan/CGI/lib/CGI.pm", "refsource": "CONFIRM", "url": "http://perl5.git.perl.org/perl.git/blobdiff/a0b94c2432b1d8c20653453a0f6970cb10f59aec..84601d63a7e34958da47dad1e61e27cb3bd467d1:/cpan/CGI/lib/CGI.pm"}, {"name": "RHSA-2011:1797", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2011-1797.html"}, {"name": "FEDORA-2011-0653", "refsource": "FEDORA", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053591.html"}, {"name": "43068", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/43068"}, {"name": "[oss-security] 20101201 Re: CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part)", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2010/12/01/2"}, {"name": "[oss-security] 20101201 Re: CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part)", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2010/12/01/3"}, {"name": "ADV-2011-0212", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2011/0212"}, {"name": "MDVSA-2010:252", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:252"}, {"name": "44199", "refsource": "BID", "url": "http://www.securityfocus.com/bid/44199"}, {"name": "SUSE-SR:2011:005", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=658970", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=658970"}, {"name": "SUSE-SR:2011:002", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html"}, {"name": "http://perl5.git.perl.org/perl.git/commit/84601d63a7e34958da47dad1e61e27cb3bd467d1", "refsource": "CONFIRM", "url": "http://perl5.git.perl.org/perl.git/commit/84601d63a7e34958da47dad1e61e27cb3bd467d1"}, {"name": "ADV-2010-3230", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2010/3230"}, {"name": "ADV-2011-0249", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2011/0249"}, {"name": "45145", "refsource": "BID", "url": "http://www.securityfocus.com/bid/45145"}, {"name": "http://www.nntp.perl.org/group/perl.perl5.changes/2010/11/msg28043.html", "refsource": "CONFIRM", "url": "http://www.nntp.perl.org/group/perl.perl5.changes/2010/11/msg28043.html"}, {"name": "MDVSA-2010:237", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:237"}, {"name": "[oss-security] 20101201 CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part)", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2010/12/01/1"}, {"name": "http://cpansearch.perl.org/src/LDS/CGI.pm-3.50/Changes", "refsource": "CONFIRM", "url": "http://cpansearch.perl.org/src/LDS/CGI.pm-3.50/Changes"}, {"name": "FEDORA-2011-0631", "refsource": "FEDORA", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053576.html"}, {"name": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705", "refsource": "CONFIRM", "url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705"}, {"name": "43147", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/43147"}, {"name": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735", "refsource": "CONFIRM", "url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T03:43:14.901Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://perl5.git.perl.org/perl.git/blobdiff/a0b94c2432b1d8c20653453a0f6970cb10f59aec..84601d63a7e34958da47dad1e61e27cb3bd467d1:/cpan/CGI/lib/CGI.pm"}, {"name": "RHSA-2011:1797", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2011-1797.html"}, {"name": "FEDORA-2011-0653", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053591.html"}, {"name": "43068", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/43068"}, {"name": "[oss-security] 20101201 Re: CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part)", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2010/12/01/2"}, {"name": "[oss-security] 20101201 Re: CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part)", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2010/12/01/3"}, {"name": "ADV-2011-0212", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2011/0212"}, {"name": "MDVSA-2010:252", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:252"}, {"name": "44199", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/44199"}, {"name": "SUSE-SR:2011:005", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=658970"}, {"name": "SUSE-SR:2011:002", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://perl5.git.perl.org/perl.git/commit/84601d63a7e34958da47dad1e61e27cb3bd467d1"}, {"name": "ADV-2010-3230", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2010/3230"}, {"name": "ADV-2011-0249", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2011/0249"}, {"name": "45145", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/45145"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.nntp.perl.org/group/perl.perl5.changes/2010/11/msg28043.html"}, {"name": "MDVSA-2010:237", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:237"}, {"name": "[oss-security] 20101201 CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part)", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2010/12/01/1"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://cpansearch.perl.org/src/LDS/CGI.pm-3.50/Changes"}, {"name": "FEDORA-2011-0631", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053576.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705"}, {"name": "43147", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/43147"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2010-4410", "datePublished": "2010-12-06T20:00:00.000Z", "dateReserved": "2010-12-06T00:00:00.000Z", "dateUpdated": "2024-08-07T03:43:14.901Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:*:*:*:*:*:*:*:*", "matchCriteriaId": "8E20D5E8-10F6-4B3F-907B-5468D3BB4AC4", "versionEndIncluding": "3.49", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:1.4:*:*:*:*:*:*:*", "matchCriteriaId": "59B846E0-BF7F-4535-ABB0-4A8069E6AAA3", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:1.42:*:*:*:*:*:*:*", "matchCriteriaId": "37812E3C-0F0B-44ED-B96D-B7160E62E70E", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:1.43:*:*:*:*:*:*:*", "matchCriteriaId": "4DF1A898-9663-4C9F-BC31-E3AD28B4388F", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:1.44:*:*:*:*:*:*:*", "matchCriteriaId": "27A93905-4CAC-4D11-81A4-E27F1EDB41EA", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:1.45:*:*:*:*:*:*:*", "matchCriteriaId": "55275EDA-ECFA-4569-A865-9BFD28BA6B8F", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:1.50:*:*:*:*:*:*:*", "matchCriteriaId": "39741EBF-DDE7-41BC-9F72-03AD11F4C9BD", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:1.51:*:*:*:*:*:*:*", "matchCriteriaId": "1B4E891E-1B05-48D0-B090-D29B1E5692CE", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:1.52:*:*:*:*:*:*:*", "matchCriteriaId": "711401D5-C463-4E8B-B194-0717651ACC78", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:1.53:*:*:*:*:*:*:*", "matchCriteriaId": "104FE050-AA99-42F4-AE92-A696A9AA4DE0", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:1.54:*:*:*:*:*:*:*", "matchCriteriaId": "6C1D739D-C758-48EB-AF17-492A6304A2BD", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:1.55:*:*:*:*:*:*:*", "matchCriteriaId": "B8FE7698-5B36-4E72-A53B-F87AD51EBD2A", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:1.56:*:*:*:*:*:*:*", "matchCriteriaId": "09093061-28B6-4FF5-A72B-4F91787986D8", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:1.57:*:*:*:*:*:*:*", "matchCriteriaId": "6FBF48EA-5977-4849-B240-CBCB045A79E9", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "5208F25D-AEDA-495E-BF06-4751BD77150B", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.01:*:*:*:*:*:*:*", "matchCriteriaId": "D35B9456-70D3-4CF7-A1C4-964455C5208B", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.13:*:*:*:*:*:*:*", "matchCriteriaId": "550CAC56-6DF4-43D5-A395-B18CB16B6E81", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.14:*:*:*:*:*:*:*", "matchCriteriaId": "E39631C0-4BE0-4FAB-95D0-663643C5620D", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.15:*:*:*:*:*:*:*", "matchCriteriaId": "10B0385D-48F8-465A-9637-4A4A20B3C5A3", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.16:*:*:*:*:*:*:*", "matchCriteriaId": "B0F1850E-390E-4D15-A552-C184B40277C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.17:*:*:*:*:*:*:*", "matchCriteriaId": "09D2CEE1-F3B6-4DA0-9DE3-C6197354CA22", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.18:*:*:*:*:*:*:*", "matchCriteriaId": "97E06518-923C-4DA9-8451-2F56E3B3E59A", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.19:*:*:*:*:*:*:*", "matchCriteriaId": "8AF5157D-741F-4D0E-AC9D-553A076A1FF4", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.20:*:*:*:*:*:*:*", "matchCriteriaId": "65CCC4EB-082A-4D31-98D9-22089580DBD9", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.21:*:*:*:*:*:*:*", "matchCriteriaId": "FCFF70A8-B425-4D94-825D-FBB743FC8052", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.22:*:*:*:*:*:*:*", "matchCriteriaId": "8C183279-80AE-4FEE-95A3-7B291245A9ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.23:*:*:*:*:*:*:*", "matchCriteriaId": "5988C49D-B070-4CC2-8C25-5E911A7D73A4", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.24:*:*:*:*:*:*:*", "matchCriteriaId": "EECD86BB-1585-47CA-B797-2A413786799E", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.25:*:*:*:*:*:*:*", "matchCriteriaId": "B666488B-412E-4A72-B27B-C8F046D4B49B", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.26:*:*:*:*:*:*:*", "matchCriteriaId": "F00BAC21-9C67-489F-8F9B-79275D5F6539", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.27:*:*:*:*:*:*:*", "matchCriteriaId": "3CA274F5-4F9D-40F4-8B0B-3C586A648E80", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.28:*:*:*:*:*:*:*", "matchCriteriaId": "086D53BA-AC97-4DD0-B06F-5713387B3630", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.29:*:*:*:*:*:*:*", "matchCriteriaId": "5CEDB9EB-C840-469E-81F2-BA0C710192E3", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.30:*:*:*:*:*:*:*", "matchCriteriaId": "2C83539A-F459-4387-A98E-123E56151439", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.31:*:*:*:*:*:*:*", "matchCriteriaId": "223D9CA6-D88C-43A4-8B2E-2F98F56C3AAA", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.32:*:*:*:*:*:*:*", "matchCriteriaId": "E153C549-3798-4AEB-B1E8-2BD83F8D1A4E", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.33:*:*:*:*:*:*:*", "matchCriteriaId": "5B4FAD39-A275-42D3-84B5-8A798D0075AD", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.34:*:*:*:*:*:*:*", "matchCriteriaId": "DB45C8C8-9EDD-437D-8514-C380633A9B20", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.35:*:*:*:*:*:*:*", "matchCriteriaId": "C3295F4B-064E-455E-9B9E-C671688D8A7A", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.36:*:*:*:*:*:*:*", "matchCriteriaId": "E433A072-EBA4-41DC-8FA5-5DA32C2CA0C1", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.37:*:*:*:*:*:*:*", "matchCriteriaId": "C0179DE4-940E-4A41-8126-7A0AB7C9F28D", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.38:*:*:*:*:*:*:*", "matchCriteriaId": "11ED8725-6D73-45F5-B833-13BCC9E2201F", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.39:*:*:*:*:*:*:*", "matchCriteriaId": "EFC2D385-9FDD-429E-A9B1-369A175BB229", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.40:*:*:*:*:*:*:*", "matchCriteriaId": "5F7CD8DC-69A6-4EAA-BD91-26370D7BF395", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.41:*:*:*:*:*:*:*", "matchCriteriaId": "FFC8447C-EBCF-4D44-B43C-EC6BD75AC068", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.42:*:*:*:*:*:*:*", "matchCriteriaId": "ED66BCC1-D212-43EE-822F-C2E6BB0B1CB1", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.43:*:*:*:*:*:*:*", "matchCriteriaId": "5D53297E-E35B-44B9-A400-E55E5A38B143", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.44:*:*:*:*:*:*:*", "matchCriteriaId": "C43C7BD0-58D6-429A-AC39-CA4CC1A0104D", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.45:*:*:*:*:*:*:*", "matchCriteriaId": "21C3E14B-62A3-4146-AF92-43FA0FDCF78E", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.46:*:*:*:*:*:*:*", "matchCriteriaId": "F6F37496-4EA4-4A29-BABD-EC572A13CC36", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.47:*:*:*:*:*:*:*", "matchCriteriaId": "9CC6F3E1-3F48-4F5F-BDCA-4FF886A84FF2", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.48:*:*:*:*:*:*:*", "matchCriteriaId": "9E2A0FD4-12D6-406E-9173-7132958A2E13", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.49:*:*:*:*:*:*:*", "matchCriteriaId": "591591DC-805B-4028-9114-AC1403A3D284", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.50:*:*:*:*:*:*:*", "matchCriteriaId": "5C901B1F-AA91-4AAE-B2C4-1E20B9A453E0", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.51:*:*:*:*:*:*:*", "matchCriteriaId": "DD512456-CD6D-44D8-8143-9F4B0B3C7DB3", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.52:*:*:*:*:*:*:*", "matchCriteriaId": "B7093E29-50BC-4495-A4C9-02A27F9A0DF7", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.53:*:*:*:*:*:*:*", "matchCriteriaId": "8F4DE297-5D2D-4244-AD40-3A1BA79391AA", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.54:*:*:*:*:*:*:*", "matchCriteriaId": "E1213E7E-7C8A-44B2-9B00-971F47088F40", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.55:*:*:*:*:*:*:*", "matchCriteriaId": "2FA2D166-D9C6-49C1-9D75-4D7347507F87", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.56:*:*:*:*:*:*:*", "matchCriteriaId": "8CEEFC9F-7DC7-4FDE-B6B0-0BF0998B9267", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.57:*:*:*:*:*:*:*", "matchCriteriaId": "B5619CC7-051C-4E66-A22D-6AC65965E74D", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.58:*:*:*:*:*:*:*", "matchCriteriaId": "92B18751-4419-4ED3-9EE9-9AEA7FE31C69", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.59:*:*:*:*:*:*:*", "matchCriteriaId": "DDBE7139-2263-4B5B-9843-14214E9AAE2A", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.60:*:*:*:*:*:*:*", "matchCriteriaId": "F6C27803-6AC0-4CC8-AAD6-447C2BD726B7", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.61:*:*:*:*:*:*:*", "matchCriteriaId": "94F24B1B-BB10-42CA-BD86-CCC237325BA0", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.62:*:*:*:*:*:*:*", "matchCriteriaId": "41054C2C-92C4-4222-8DDC-1B788C7BE4A2", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.63:*:*:*:*:*:*:*", "matchCriteriaId": "E8D61299-9A05-4800-B3A3-A64977664559", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.64:*:*:*:*:*:*:*", "matchCriteriaId": "0C2EDAEF-B40A-437A-B30A-A5EF9B54752B", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.65:*:*:*:*:*:*:*", "matchCriteriaId": "B62273AD-F3FC-4EDA-A3DB-4082C89C27DD", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.66:*:*:*:*:*:*:*", "matchCriteriaId": "4C07FA63-F744-497D-A251-4491DBA49AC1", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.67:*:*:*:*:*:*:*", "matchCriteriaId": "47D4D43B-1347-43B3-980A-44859A1BB8A6", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.68:*:*:*:*:*:*:*", "matchCriteriaId": "97054639-45E1-405D-ADDC-B452D11DB8A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.69:*:*:*:*:*:*:*", "matchCriteriaId": "B43E6CC8-A09E-43C4-B851-D25C24C3A4C2", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.70:*:*:*:*:*:*:*", "matchCriteriaId": "3D01EEBB-D8B2-45FA-8925-8AE779A57682", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.71:*:*:*:*:*:*:*", "matchCriteriaId": "F6CF59A2-936F-40F7-A727-25E6B6AC9748", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.72:*:*:*:*:*:*:*", "matchCriteriaId": "58B24B8A-328E-4434-9D02-4B6D5FF2F9F0", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.73:*:*:*:*:*:*:*", "matchCriteriaId": "6B7D2ED6-CBA2-46EA-ADAA-7F59B3B09FAF", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.74:*:*:*:*:*:*:*", "matchCriteriaId": "27BEADE4-AE41-486F-918D-5BC86346F22D", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.75:*:*:*:*:*:*:*", "matchCriteriaId": "5AF31759-B531-48D3-9625-4AED09632A1A", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.76:*:*:*:*:*:*:*", "matchCriteriaId": "978642D9-5330-4241-A5B3-E07794BF0B34", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.77:*:*:*:*:*:*:*", "matchCriteriaId": "4C4CF987-E4AA-4489-9CC5-C0868BBD7617", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.78:*:*:*:*:*:*:*", "matchCriteriaId": "8A5FA7E2-B41A-4E3B-971C-EAE051CEEA77", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.79:*:*:*:*:*:*:*", "matchCriteriaId": "FBC8E0E4-C542-4012-9335-A561162B1E1B", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.80:*:*:*:*:*:*:*", "matchCriteriaId": "F28335C7-5FB4-4777-8481-E1D3EDE6C143", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.81:*:*:*:*:*:*:*", "matchCriteriaId": "10C3ED14-191F-4E16-8101-FAEB8717CDFD", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.82:*:*:*:*:*:*:*", "matchCriteriaId": "B1ACE21F-3B1B-41C0-A087-D48AAB2D79AB", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.83:*:*:*:*:*:*:*", "matchCriteriaId": "86D391A4-CA61-4EDB-BD09-0E69ADC93306", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.84:*:*:*:*:*:*:*", "matchCriteriaId": "D33AB5F1-8856-4F3D-A3C8-619BD5B897BE", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.85:*:*:*:*:*:*:*", "matchCriteriaId": "EBED7E87-D862-4ECB-98E9-0BA10606F1A6", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.86:*:*:*:*:*:*:*", "matchCriteriaId": "D471DB42-E992-4EEC-8F0B-A0FD7AC29EF7", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.87:*:*:*:*:*:*:*", "matchCriteriaId": "E4F4B2B6-A72C-4319-B65F-294DE27F77A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.88:*:*:*:*:*:*:*", "matchCriteriaId": "ECD471B9-2075-416D-AD87-3F826F38FAC8", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.89:*:*:*:*:*:*:*", "matchCriteriaId": "641FD677-43BB-4796-B8F3-EEC282E118A8", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.90:*:*:*:*:*:*:*", "matchCriteriaId": "415285DD-A6EF-4D11-9077-2BC6BE12D5EC", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.91:*:*:*:*:*:*:*", "matchCriteriaId": "418D4B38-93A1-465F-A8DD-433F8371F071", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.92:*:*:*:*:*:*:*", "matchCriteriaId": "98B2CA97-9140-4492-A342-B63F3647786A", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.93:*:*:*:*:*:*:*", "matchCriteriaId": "B8C58B61-1531-4779-B04F-03D1FDFFE512", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.94:*:*:*:*:*:*:*", "matchCriteriaId": "757861AE-4B07-4C63-B381-4A9E33A913F1", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.95:*:*:*:*:*:*:*", "matchCriteriaId": "F047C787-2D66-4E65-995E-7F7AF26C83EC", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.96:*:*:*:*:*:*:*", "matchCriteriaId": "75CADE1E-7220-4A8C-A88E-634C705B955D", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.97:*:*:*:*:*:*:*", "matchCriteriaId": "42B8AEA7-9555-42BB-83F6-8CDF2A45E27A", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.98:*:*:*:*:*:*:*", "matchCriteriaId": "BCEFE536-5E0D-4A9F-AA0C-7442C364931A", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.99:*:*:*:*:*:*:*", "matchCriteriaId": "9127D899-998F-4D1E-A883-D90D039BFF40", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.751:*:*:*:*:*:*:*", "matchCriteriaId": "299BB424-8871-460C-95B0-7AD990A4F2C2", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:2.752:*:*:*:*:*:*:*", "matchCriteriaId": "001AFBC4-C744-4254-B7CB-E0EB2C4E0FD6", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.00:*:*:*:*:*:*:*", "matchCriteriaId": "CEE30199-A513-44F3-9F8A-053E1D8853A3", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.01:*:*:*:*:*:*:*", "matchCriteriaId": "27CFEFC4-BC57-4A29-8938-D69E149A772C", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.02:*:*:*:*:*:*:*", "matchCriteriaId": "C8AE6355-2F22-4338-9B64-9429DFE7B192", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.03:*:*:*:*:*:*:*", "matchCriteriaId": "F2C55E48-24B4-40FE-B398-2A9FC690B078", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.04:*:*:*:*:*:*:*", "matchCriteriaId": "87518DE5-F1C6-4296-9DF9-DA4FE3D29E3A", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.05:*:*:*:*:*:*:*", "matchCriteriaId": "1EE610EC-660C-4651-AF61-BE86835CE819", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.06:*:*:*:*:*:*:*", "matchCriteriaId": "FDFCE75A-BED9-4A8B-A77A-45031C369C89", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.07:*:*:*:*:*:*:*", "matchCriteriaId": "4A874002-E4FA-4D58-985A-38C0144A17F9", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.08:*:*:*:*:*:*:*", "matchCriteriaId": "BDA7F11A-0EBA-4055-BE91-615287759273", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.09:*:*:*:*:*:*:*", "matchCriteriaId": "F297D7BB-7BC6-45DB-98F9-F910F564E29D", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.10:*:*:*:*:*:*:*", "matchCriteriaId": "E5D06357-6EFB-451E-84B2-B6B0C3751322", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.11:*:*:*:*:*:*:*", "matchCriteriaId": "4AEAFAA4-A504-4830-8772-E04ABB8ABA94", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.12:*:*:*:*:*:*:*", "matchCriteriaId": "B9932AD0-2EB8-46F9-B2A2-CEA5F2B86613", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.13:*:*:*:*:*:*:*", "matchCriteriaId": "51602911-C72B-443F-8430-3E0137D25FF8", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.14:*:*:*:*:*:*:*", "matchCriteriaId": "8CC3430F-9ABA-49D2-9BDD-2D62EDE8903F", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.15:*:*:*:*:*:*:*", "matchCriteriaId": "9D799737-46ED-4F5E-896A-98B8615F58EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.16:*:*:*:*:*:*:*", "matchCriteriaId": "16BBFF40-8130-466B-80BE-FF499BD5D6DE", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.17:*:*:*:*:*:*:*", "matchCriteriaId": "65113484-56AC-46C0-BF32-4A6E0506543C", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.18:*:*:*:*:*:*:*", "matchCriteriaId": "8D66440A-ADFC-4739-AD3F-16BD9322B5BF", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.19:*:*:*:*:*:*:*", "matchCriteriaId": "35790EB9-4E91-4C74-973D-9F2D929CE177", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.20:*:*:*:*:*:*:*", "matchCriteriaId": "4FAF06A7-A4BF-4FF0-AFF8-5490E9F3C3E4", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.21:*:*:*:*:*:*:*", "matchCriteriaId": "D18B6CC6-6738-43D1-89CC-35E75AC6D372", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.22:*:*:*:*:*:*:*", "matchCriteriaId": "C2B8AC1E-1203-4857-A2D8-8DF7589A9B6E", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.23:*:*:*:*:*:*:*", "matchCriteriaId": "2AE3CA84-F19B-4DBC-B3AA-F576011FBF6D", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.24:*:*:*:*:*:*:*", "matchCriteriaId": "DE8ED0AD-F102-4D0D-84A6-753C9DCE29E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.25:*:*:*:*:*:*:*", "matchCriteriaId": "5EC87749-E547-435D-BFCA-C4EB8FA3F52E", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.26:*:*:*:*:*:*:*", "matchCriteriaId": "F9B6599A-69AD-4C30-9BE2-4392B92D63E9", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.27:*:*:*:*:*:*:*", "matchCriteriaId": "8FC41A36-22ED-4140-BCE1-72FD600814C2", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.28:*:*:*:*:*:*:*", "matchCriteriaId": "D9A0369A-A65F-4FE1-AAB3-FE5D07F3BD83", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.29:*:*:*:*:*:*:*", "matchCriteriaId": "472F63BB-E8CE-4AFD-804C-89D180D1A8D9", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.30:*:*:*:*:*:*:*", "matchCriteriaId": "45B118D0-B093-421F-AAB3-1298A26F1162", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.31:*:*:*:*:*:*:*", "matchCriteriaId": "7E33BF7B-C086-4E72-9DE4-8264F50845F7", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.32:*:*:*:*:*:*:*", "matchCriteriaId": "0BAAF493-0460-40C8-9173-736582EF1AD8", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.33:*:*:*:*:*:*:*", "matchCriteriaId": "610C9B3E-0D2F-4881-9BE1-A60E484D5C08", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.34:*:*:*:*:*:*:*", "matchCriteriaId": "9AFD56E7-732A-45FE-B17B-46280F988058", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.35:*:*:*:*:*:*:*", "matchCriteriaId": "07FEC5A4-D662-4FDE-B9BA-53BCFEC5F521", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.36:*:*:*:*:*:*:*", "matchCriteriaId": "4F141F5D-4E41-4180-9413-D201EF57992C", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.37:*:*:*:*:*:*:*", "matchCriteriaId": "79E16F80-C2A5-4859-89EC-E46FD371670A", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.38:*:*:*:*:*:*:*", "matchCriteriaId": "932FFD59-B45F-44F1-8C48-4815BDEBFB30", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.39:*:*:*:*:*:*:*", "matchCriteriaId": "A890611B-A162-4CDF-AB59-F6A9683399AF", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.40:*:*:*:*:*:*:*", "matchCriteriaId": "45258F98-8CC4-4B27-BEE6-638A19F75674", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.41:*:*:*:*:*:*:*", "matchCriteriaId": "7DCC040A-3F5C-4CCC-9540-5A61FF4F3098", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.42:*:*:*:*:*:*:*", "matchCriteriaId": "6B17E4CB-AEEA-489F-8601-D2D7614FF2EA", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.43:*:*:*:*:*:*:*", "matchCriteriaId": "B1C58D73-C864-48A6-B120-70111B6DC255", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.44:*:*:*:*:*:*:*", "matchCriteriaId": "341B12EC-F089-4D13-9CE1-F6C77F63EFEC", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.45:*:*:*:*:*:*:*", "matchCriteriaId": "EDEBF3C6-26B2-45BE-B440-94FA0E4A699D", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.46:*:*:*:*:*:*:*", "matchCriteriaId": "03513BD7-FABA-4B49-AA42-0EFDDA8EE245", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.47:*:*:*:*:*:*:*", "matchCriteriaId": "9A251F28-FCEA-4B0F-AEC9-32916CD464E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi.pm:3.48:*:*:*:*:*:*:*", "matchCriteriaId": "BD434B97-08D6-4533-BAE0-53EF94BBECA4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:*:*:*:*:*:*:*:*", "matchCriteriaId": "F492844C-491A-4124-B0F4-677A7F6295B8", "versionEndIncluding": "1.112", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:0.078:*:*:*:*:*:*:*", "matchCriteriaId": "F9D0AD63-ADB5-49A1-A947-C6B8DD2380D4", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:0.079:*:*:*:*:*:*:*", "matchCriteriaId": "933D7C72-F3EE-4037-8E2B-B1A316A1B21A", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:0.080:*:*:*:*:*:*:*", "matchCriteriaId": "6E4627D1-2F49-4631-8621-0ED00809546E", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:0.081:*:*:*:*:*:*:*", "matchCriteriaId": "FCCD9748-7429-4753-8D9B-4A18F3A1E5FB", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:0.082:*:*:*:*:*:*:*", "matchCriteriaId": "86C63243-6170-4E49-8ED8-A49A78EC1D27", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:0.83:*:*:*:*:*:*:*", "matchCriteriaId": "E3C6D841-7D30-48A0-B5B7-44A0DD80A378", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "8CE0E5A0-1AB2-47B7-97D4-7C86851CC568", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:1.1:*:*:*:*:*:*:*", "matchCriteriaId": "D5997A75-9A73-4C90-B522-D33618D55BA5", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:1.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "FA3A447F-3203-44BD-95C6-C351ED458CA3", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:1.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "7C07267B-323F-4529-A7E6-AE8DE80D79DA", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:1.103:*:*:*:*:*:*:*", "matchCriteriaId": "04EF4A44-56C1-4078-A04F-80073290462B", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:1.104:*:*:*:*:*:*:*", "matchCriteriaId": "0AC0DCD5-2689-4556-A346-59F563F39E9D", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:1.105:*:*:*:*:*:*:*", "matchCriteriaId": "1432A51A-99D6-4D6C-8EF2-E8BBA8A7A222", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:1.106:*:*:*:*:*:*:*", "matchCriteriaId": "A8718571-C8D1-4337-BF12-396D764E2173", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:1.107:*:*:*:*:*:*:*", "matchCriteriaId": "69E512FF-25E0-4365-8CC0-6BA835A3B7F3", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:1.108:*:*:*:*:*:*:*", "matchCriteriaId": "5B5D2AAA-C707-473F-83C5-5ACA4A2C8C35", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:1.109:*:*:*:*:*:*:*", "matchCriteriaId": "D3FBF0F5-7C52-4CB8-8F3C-0173E692E774", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:1.110:*:*:*:*:*:*:*", "matchCriteriaId": "D0CC27CA-9852-4F69-B1E6-518ED2CED10B", "vulnerable": true}, {"criteria": "cpe:2.3:a:andy_armstrong:cgi-simple:1.111:*:*:*:*:*:*:*", "matchCriteriaId": "3BDCE5D0-A7FB-4F20-8418-C3B6E1005E0E", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "CRLF injection vulnerability in the header function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline characters, a different vulnerability than CVE-2010-2761 and CVE-2010-3172."}, {"lang": "es", "value": "Vulnerabilidad de inyecci\u00f3n CRLF (se refiere a CR (retorno de carro) y LF (salto de l\u00ednea)) en la funci\u00f3n header de (1) CGI.pm en versiones anteriores a la 3.50 y (2) Simple.pm de CGI::Simple 1.112 y versiones anteriores. Permite a atacantes remotos inyectar cabeceras HTTP y realizar un ataque de divisi\u00f3n de respuesta HTTP a trav\u00e9s de vectores relacionados con caracteres que no son espacios en blanco precididos por caracteres de nueva l\u00ednea. Una vulnerabilidad distinta a CVE-2010-2761 y CVE-2010-3172."}], "id": "CVE-2010-4410", "lastModified": "2026-04-29T01:13:23.040", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2010-12-06T20:13:00.623", "references": [{"source": "cve@mitre.org", "url": "http://cpansearch.perl.org/src/LDS/CGI.pm-3.50/Changes"}, {"source": "cve@mitre.org", "url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705"}, {"source": "cve@mitre.org", "url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735"}, {"source": "cve@mitre.org", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053576.html"}, {"source": "cve@mitre.org", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053591.html"}, {"source": "cve@mitre.org", "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html"}, {"source": "cve@mitre.org", "url": "http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://openwall.com/lists/oss-security/2010/12/01/1"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://openwall.com/lists/oss-security/2010/12/01/2"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://openwall.com/lists/oss-security/2010/12/01/3"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://perl5.git.perl.org/perl.git/blobdiff/a0b94c2432b1d8c20653453a0f6970cb10f59aec..84601d63a7e34958da47dad1e61e27cb3bd467d1:/cpan/CGI/lib/CGI.pm"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://perl5.git.perl.org/perl.git/commit/84601d63a7e34958da47dad1e61e27cb3bd467d1"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/43068"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/43147"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:237"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:252"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.nntp.perl.org/group/perl.perl5.changes/2010/11/msg28043.html"}, {"source": "cve@mitre.org", "url": "http://www.redhat.com/support/errata/RHSA-2011-1797.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/44199"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/45145"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2010/3230"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2011/0212"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2011/0249"}, {"source": "cve@mitre.org", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=658970"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://cpansearch.perl.org/src/LDS/CGI.pm-3.50/Changes"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053576.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053591.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://openwall.com/lists/oss-security/2010/12/01/1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://openwall.com/lists/oss-security/2010/12/01/2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://openwall.com/lists/oss-security/2010/12/01/3"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://perl5.git.perl.org/perl.git/blobdiff/a0b94c2432b1d8c20653453a0f6970cb10f59aec..84601d63a7e34958da47dad1e61e27cb3bd467d1:/cpan/CGI/lib/CGI.pm"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://perl5.git.perl.org/perl.git/commit/84601d63a7e34958da47dad1e61e27cb3bd467d1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/43068"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/43147"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:237"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:252"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.nntp.perl.org/group/perl.perl5.changes/2010/11/msg28043.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.redhat.com/support/errata/RHSA-2011-1797.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/44199"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/45145"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2010/3230"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2011/0212"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2011/0249"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=658970"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2011:1797", "cpe": "cpe:/o:redhat:enterprise_linux:4", "package": "perl-3:5.8.5-57.el4", "product_name": "Red Hat Enterprise Linux 4", "release_date": "2011-12-08T00:00:00Z"}, {"advisory": "RHSA-2011:1797", "cpe": "cpe:/o:redhat:enterprise_linux:5", "package": "perl-4:5.8.8-32.el5_7.6", "product_name": "Red Hat Enterprise Linux 5", "release_date": "2011-12-08T00:00:00Z"}, {"advisory": "RHSA-2011:0558", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "perl-4:5.10.1-119.el6", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2011-05-19T00:00:00Z"}], "bugzilla": {"description": "perl-CGI-Simple: - hardcoded MIME boundary value for multipart content, CVE-2010-4410 - CRLF injection allowing HTTP response splitting", "id": "658976", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=658976"}, "csaw": false, "cvss": {"cvss_base_score": "4.3", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "status": "verified"}, "details": ["CRLF injection vulnerability in the header function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline characters, a different vulnerability than CVE-2010-2761 and CVE-2010-3172."], "name": "CVE-2010-4410", "public_date": "2010-11-10T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2010-4410\nhttps://nvd.nist.gov/vuln/detail/CVE-2010-4410"], "threat_severity": "Moderate"}

{}