Zero Day MonitorZDM
DashboardVulnerabilitiesTrendingZero-DaysNewsAbout
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
3102 articles · 171973 vulns · 36/41 feeds (7d)
← Back to list
9.1
CVE-2026-8450EXPLOITEDPATCHED
perl · http::daemon

HTTP::Daemon versions before 6.17 for Perl allow OS command injection via send_file()

Description

HTTP::Daemon versions before 6.17 for Perl allow OS command injection via send_file(). send_file() opens its string argument with Perl's 2-arg open(). The 2-arg form interprets magic prefixes: '| cmd' and 'cmd |' open a pipe to a subprocess, '> path' and '>> path' open the path for write or append. Untrusted input passed to send_file() can run OS commands at the daemon process UID. The read-pipe form ('cmd |') also leaks subprocess stdout into the HTTP response body. The write-mode forms can create or truncate files at attacker chosen paths.

Affected Products

VendorProductVersions
perlhttp::daemon0

Also Affects

Downstream vendors/products affected by this vulnerability

VendorProductSourceConfidence
red hatenterprise linuxcert_advisory90%

References

  • https://github.com/libwww-perl/HTTP-Daemon/pull/89(issue-tracking)
  • https://github.com/libwww-perl/HTTP-Daemon/commit/945d35141d94490f749640bd4390acd6a2193995.patch(patch)
  • https://metacpan.org/release/OALDERS/HTTP-Daemon-6.17/changes(release-notes)

Related News (3 articles)

Tier B
BSI Advisories2h ago
[NEU] [hoch] Red Hat Enterprise Linux (perl-HTTP-Daemon): Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes
→ No new info (linked only)
Tier C
VulDB41d ago
CVE-2026-8450 | OALDERS HTTP::Daemon up to 6.16 on Perl send_file os command injection
→ No new info (linked only)
Tier C
oss-security41d ago
CVE-2026-8450: HTTP::Daemon versions before 6.17 for Perl allow OS command injection via send_file()
→ No new info (linked only)
CVSS 3.19.1 NONE
CISA KEV❌ No
Actively exploited✅ Yes
Patch available
6.17
CWECWE-78, CWE-73
PublishedMay 27, 2026
Last enriched2h agov3
Tags
CVE-2026-8450
Trending Score70
Source articles3
Independent3
Info Completeness10/14
Missing: epss, kev, iocs, mitre_attack

Community Vote

0
Login to vote
0 upvotes0 downvotes
No votes yet

Related CVEs (5)

HIGHCVE-2026-11625EXP
Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes
Trending: 29
HIGHCVE-2026-56018EXP
JavaScript::Minifier::XS versions before 0.16 for Perl leak memory on every call to minify(), allowing unbounded memory growth
Trending: 21
MEDIUMCVE-2026-56017EXP
JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first meaningful token of the input is a slash
Trending: 20
NONECVE-2026-9698EXP
DBI versions before 1.648 for Perl saved errors in a limited-sized buffer
Trending: 19
HIGHCVE-2026-48962EXP
IO::Compress versions before 2.220 for Perl can execute arbitrary code in File::GlobMapper via an attacker-controlled output glob
Trending: 13

Pin to Dashboard

Verification

State: verified
Confidence: 0%

Vulnerability Timeline

CVE Published
May 27, 2026
Discovered by ZDM
May 27, 2026
Updated: affectedVersions, tags
May 27, 2026
Updated: severity, exploitAvailable, activelyExploited
Jul 7, 2026
Actively Exploited
Jul 7, 2026
Exploit Available
Jul 7, 2026
Patch Available
Jul 7, 2026

Version History

v3
Last enriched 2h ago
v3Tier B2h ago

Updated vendor to Red Hat, product to Red Hat Enterprise Linux, changed severity to HIGH, and marked exploit as available and actively exploited.

severityexploitAvailableactivelyExploited
via BSI Advisories
v2Tier C41d ago

Updated severity to CRITICAL, marked as actively exploited, and added affected version 6.16.

affectedVersionstags
via VulDB
v141d ago

Initial creation