{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-17T02:05:10.526","vulnerabilities":[{"cve":{"id":"CVE-2025-40913","sourceIdentifier":"9b29abf9-4ab0-4765-b253-1875cd9b441e","published":"2025-07-16T14:15:25.237","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Net::Dropbear versions through 0.16 for Perl contains a dependency that may be susceptible to an integer overflow.\n\nNet::Dropbear embeds a version of the libtommath library that is susceptible to an integer overflow associated with CVE-2023-36328."},{"lang":"es","value":"Las versiones de Net::Dropbear hasta la 0.16 para Perl contienen una dependencia susceptible a un desbordamiento de enteros. Net::Dropbear integra una versión de la librería libtommath susceptible a un desbordamiento de enteros asociado con CVE-2023-36328."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":2.5}]},"references":[{"url":"https://github.com/advisories/GHSA-j3xv-6967-cv88","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"https://github.com/libtom/libtommath/pull/546","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"https://metacpan.org/release/ATRODO/Net-Dropbear-0.16/source/dropbear/libtommath/bn_mp_grow.c","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"https://www.cve.org/CVERecord?id=CVE-2023-36328","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"}]}}]}