Skip to main content
Version: latest

CVE-2023-31486

CVE Details

CVE-2023-31486

Last Update

11/7/24

NIST CVE Summary

HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates.

Our Official Summary

Investigation is ongoing to determine how this vulnerability affects our products.

CVE Severity

8.1

Status

Ongoing

Affected Products & Versions

  • Palette Enterprise 4.5.3, 4.5.8
  • Palette VerteX 4.5.3, 4.5.8

Revision History

  • 1.0 10/14/24 Initial Publication
  • 2.0 10/14/2024 Added Palette Enterprise & Palette VerteX 4.5.3 to Affected Products
  • 3.0 11/7/2024 Added Palette Enterprise & Palette VerteX 4.5.8 to Affected Products