Ghostwire

CVE-2026-57074: XML::Bare versions through 0.53 for Perl have an unbounded character lookahead. The parserc_parse function attempts to...

NULL CVSS 2.5

Published: July 16, 2026 | Last Modified: July 16, 2026

Description

XML::Bare versions through 0.53 for Perl have an unbounded character lookahead. The parserc_parse function attempts to check for multicharacter strings such as "" without checking that the offsets are within the buffer. Truncated strings such as "

Ghostwire Analysis — What This Means Practically

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

References