216.73.216.67

CVE-2026-45179

· Published 10/05/2026 20:16 · Modified 10/05/2026 22:16

Labels: CVE-2026-45179 2026-05-109b29abf9-4ab0-4765-b253-1875cd9b441eCVE-2026-45179CWE-319

Essential information

Published
10/05/2026 20:16
Modified
10/05/2026 22:16
Author
Creator
CISA KEV
No
CWE

Description

Plack::Middleware::Statsd versions before 0.9.0 for Perl may leak user IP addresses. If the communication channel to the statsd daemon is not secured (for example, by sending UDP packets to a host on another network), then users' IP addresses may be leaked. Since version 0.9.0, the IP address is no longer logged to statsd unless configured. When configured, an HMAC signature of the IP address is logged instead.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
9b29abf9-4ab0-4765-b253-1875cd9b441e
NVD
View on NVD

Affected products (CPE)

ProductCPE
plack / middleware cpe:2.3:a:plack:middleware:0.9.0:*:*:*:*:*:*:*
plack / middleware cpe:2.3:a:plack:middleware:*:<0.9.0:*:*:*:*:*:*

References