CVE-2026-9698

CVE-2026-9698: DBI versions before 1.648 for Perl saved errors in a limited-sized buffer

Vendor Hmbrand
Product DBI
Weakness CWE-787
Published June 9, 2026
Last update June 30, 2026

CVSS base score

What the vulnerability does

01Description

DBI versions before 1.648 for Perl saved errors in a limited-sized buffer. Error messages that were returned when RaiseError, PrintError or HandleError were set were written to a 200-byte buffer without a length limit. Attackers that can influence the error text in an application can trigger a buffer overflow.

Key dates

02Disclosure timeline

June 9, 2026 CVE published
June 30, 2026 Record updated