Every CVE whose affected-product data names Rrwo Net::cidr::set, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2026-49941 — CVSS 7.5 (high): Net::CIDR::Set versions through 0.20 for Perl did not validate IP addresses. The add method called the _encode method to parse addresses…
CVE-2026-49942 — CVSS 7.3 (high): Net::CIDR::Set versions through 0.20 for Perl did not validate network masks. The mask portion of a network mask could contain Unicode…
CVE-2026-49940 — CVSS 6.5 (medium): Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One…