Medium severity6.5NVD Advisory· Published Jun 4, 2026· Updated Jun 8, 2026
CVE-2026-49940
CVE-2026-49940
Description
Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks.
Unicode digits such as the Arabic-Indic One (U+0661) were accepted but not properly parsed as numbers. This could allow network masks to accept larger networks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <=0.20
Patches
Vulnerability mechanics
References
2- nvd.nist.gov/vuln/detail/CVE-2025-40911nvdThird Party AdvisoryUS Government Resource
- metacpan.org/release/RRWO/Net-CIDR-Set-0.21/changesnvdRelease Notes
News mentions
0No linked articles in our index yet.