CVE-2026-8612: CWE-732 Incorrect Permission Assignment for Critical Resource in OALDERS WWW::Mechanize::Cached
CVE-2026-8612 affects WWW::Mechanize::Cached versions before 2. 00 for Perl, where cached HTTP responses are stored in a world-writable on-disk cache with insecure permissions. This allows a local attacker with write access to the cache directory to replace cached responses with attacker-controlled data. When the victim process retrieves the cached response, it deserializes the data using Storable::thaw, which can trigger arbitrary code execution if the victim has loaded classes with side-effectful deserialization hooks.
AI Analysis
Technical Summary
WWW::Mechanize::Cached prior to version 2.00 uses a default Cache::FileCache backend under /tmp/FileCache with directory permissions set to 0777 and no sticky bit, making the cache world-writable. Cache entries are named by sha1_hex of the request and deserialized using Storable::thaw. A local attacker with write access to the cache can replace cache entries with malicious frozen HTTP::Response objects. Because Storable::thaw invokes class hooks such as STORABLE_thaw, DESTROY, or overload, this can lead to arbitrary code execution in the victim process.
Potential Impact
Local attackers with write access to the cache directory can forge cached HTTP responses that the victim process will deserialize, potentially leading to arbitrary code execution. This compromises the confidentiality, integrity, and availability of the affected system. No known exploits in the wild have been reported. The vulnerability requires local access and the ability to write to the cache directory.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until a fix is available, restrict write permissions to the cache directory to trusted users only and avoid running WWW::Mechanize::Cached with elevated privileges or in environments where untrusted users have local access. Consider configuring an explicit cache backend with secure permissions if supported.
CVE-2026-8612: CWE-732 Incorrect Permission Assignment for Critical Resource in OALDERS WWW::Mechanize::Cached
Description
CVE-2026-8612 affects WWW::Mechanize::Cached versions before 2. 00 for Perl, where cached HTTP responses are stored in a world-writable on-disk cache with insecure permissions. This allows a local attacker with write access to the cache directory to replace cached responses with attacker-controlled data. When the victim process retrieves the cached response, it deserializes the data using Storable::thaw, which can trigger arbitrary code execution if the victim has loaded classes with side-effectful deserialization hooks.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
WWW::Mechanize::Cached prior to version 2.00 uses a default Cache::FileCache backend under /tmp/FileCache with directory permissions set to 0777 and no sticky bit, making the cache world-writable. Cache entries are named by sha1_hex of the request and deserialized using Storable::thaw. A local attacker with write access to the cache can replace cache entries with malicious frozen HTTP::Response objects. Because Storable::thaw invokes class hooks such as STORABLE_thaw, DESTROY, or overload, this can lead to arbitrary code execution in the victim process.
Potential Impact
Local attackers with write access to the cache directory can forge cached HTTP responses that the victim process will deserialize, potentially leading to arbitrary code execution. This compromises the confidentiality, integrity, and availability of the affected system. No known exploits in the wild have been reported. The vulnerability requires local access and the ability to write to the cache directory.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until a fix is available, restrict write permissions to the cache directory to trusted users only and avoid running WWW::Mechanize::Cached with elevated privileges or in environments where untrusted users have local access. Consider configuring an explicit cache backend with secure permissions if supported.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- CPANSec
- Date Reserved
- 2026-05-14T16:30:23.954Z
- Cvss Version
- null
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a06b46bec166c07b0d02a9c
Added to database: 5/15/2026, 5:51:39 AM
Last enriched: 5/15/2026, 6:06:48 AM
Last updated: 5/15/2026, 6:54:40 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.