DBI versions before 1.648 for Perl saved errors in a limited-sized buffer
CVE-2026-9698

Currently unrated

Key Information:

What is CVE-2026-9698?

DBI versions before 1.648 for Perl saved errors in a limited-sized buffer.

Error messages that were returned when RaiseError, PrintError or HandleError were set were written to a 200-byte buffer without a length limit.

Attackers that can influence the error text in an application can trigger a buffer overflow.

DBI 0 < 1.648

Download the Critical Vulnerability Management Cheat Sheet

CVE-2026-9698 Data