UBUNTU-CVE-2025-40927

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/CVE-2025-40927
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-40927.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2025-40927
Upstream
Published
2025-08-29T01:15:00Z
Modified
2026-05-20T16:23:24.375744563Z
Severity
  • 7.3 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L CVSS Calculator
  • Ubuntu - medium
Summary
[none]
Details

CGI::Simple versions before 1.282 for Perl has a HTTP response splitting flaw This vulnerability is a confirmed HTTP response splitting flaw in CGI::Simple that allows HTTP response header injection, which can be used for reflected XSS or open redirect under certain conditions. Although some validation exists, it can be bypassed using URL-encoded values, allowing an attacker to inject untrusted content into the response via query parameters. As a result, an attacker can inject a line break (e.g. %0A) into the parameter value, causing the server to split the HTTP response and inject arbitrary headers or even an HTML/JavaScript body, leading to reflected cross-site scripting (XSS), open redirect or other attacks. The issue documented in CVE-2010-4410 https://www.cve.org/CVERecord?id=CVE-2010-4410 is related but the fix was incomplete. Impact By injecting %0A (newline) into a query string parameter, an attacker can: * Break the current HTTP header * Inject a new header or entire body * Deliver a script payload that is reflected in the server’s response That can lead to the following attacks: * reflected XSS * open redirect * cache poisoning * header manipulation

References

Affected packages

Ubuntu:16.04:LTS
libcgi-simple-perl

Package

Name
libcgi-simple-perl
Purl
pkg:deb/ubuntu/libcgi-simple-perl?arch=source&distro=xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.115-1
1.115-2

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "libcgi-simple-perl",
            "binary_version": "1.115-2"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-40927.json"
Ubuntu:18.04:LTS
libcgi-simple-perl

Package

Name
libcgi-simple-perl
Purl
pkg:deb/ubuntu/libcgi-simple-perl?arch=source&distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.115-2

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "libcgi-simple-perl",
            "binary_version": "1.115-2"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-40927.json"
Ubuntu:20.04:LTS
libcgi-simple-perl

Package

Name
libcgi-simple-perl
Purl
pkg:deb/ubuntu/libcgi-simple-perl?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.115-2

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "libcgi-simple-perl",
            "binary_version": "1.115-2"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-40927.json"
Ubuntu:22.04:LTS
libcgi-simple-perl

Package

Name
libcgi-simple-perl
Purl
pkg:deb/ubuntu/libcgi-simple-perl?arch=source&distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.115-2
1.280-1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "libcgi-simple-perl",
            "binary_version": "1.280-1"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-40927.json"
Ubuntu:24.04:LTS
libcgi-simple-perl

Package

Name
libcgi-simple-perl
Purl
pkg:deb/ubuntu/libcgi-simple-perl?arch=source&distro=noble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.280-2
1.281-1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "libcgi-simple-perl",
            "binary_version": "1.281-1"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-40927.json"
Ubuntu:25.10
libcgi-simple-perl

Package

Name
libcgi-simple-perl
Purl
pkg:deb/ubuntu/libcgi-simple-perl?arch=source&distro=questing

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.281-1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "libcgi-simple-perl",
            "binary_version": "1.281-1"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-40927.json"
Ubuntu:26.04:LTS
libcgi-simple-perl

Package

Name
libcgi-simple-perl
Purl
pkg:deb/ubuntu/libcgi-simple-perl?arch=source&distro=resolute

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.281-1
1.282-1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "libcgi-simple-perl",
            "binary_version": "1.282-1"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-40927.json"