CVE & CISA-KEV Catalog

CVE-2026-40199

MEDIUM
6.5
CVSS v3
NVD

Description

Net::CIDR::Lite versions before 0.23 for Perl mishandles IPv4 mapped IPv6 addresses, which may allow IP ACL bypass. _pack_ipv6() includes the sentinel byte from _pack_ipv4() when building the packed representation of IPv4 mapped addresses like ::ffff:192.168.1.1. This produces an 18 byte value instead of 17 bytes, misaligning the IPv4 part of the address. The wrong length causes incorrect results in mask operations (bitwise AND truncates to the shorter operand) and in find() / bin_find() which use Perl string comparison (lt/gt). This can cause find() to incorrectly match or miss addresses. Example: my $cidr = Net::CIDR::Lite->new("::ffff:192.168.1.0/120"); $cidr->find("::ffff:192.168.2.0"); # incorrectly returns true This is triggered by valid RFC 4291 IPv4 mapped addresses (::ffff:x.x.x.x). See also CVE-2026-40198, a related issue in the same function affecting malformed IPv6 addresses.

How to fix

Remediation Available
libnet-cidr-lite-perlDebian
Fixed in:0.22-3~deb12u1CVE-2026-40199
Fixed in:0.22-3~deb13u1CVE-2026-40199
Fixed in:0.22-3CVE-2026-40199
libnet-cidr-lite-perlUbuntu
Fixed in:0.21-1ubuntu0.16.04.1~esm1USN-8406-1
Fixed in:0.21-1ubuntu0.18.04.1~esm1USN-8406-1
Fixed in:0.21-2ubuntu0.1+esm1USN-8406-1
Fixed in:0.22-1ubuntu0.1USN-8406-1
Fixed in:0.22-2ubuntu0.24.04.1USN-8406-1
Fixed in:0.22-2ubuntu0.25.10.1USN-8406-1

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityLow
IntegrityLow
AvailabilityNone

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Exploit Intelligence

0.31%probability of exploitation in 30 days
22ndpercentile

Low risk: more likely to be exploited than 22% of all known CVEs.

References

Third-Party Advisory1
Release Notes1
Embed a live status badge for CVE-2026-40199
CVE-2026-40199 severity badge

Markdown

[![CVE-2026-40199](https://tridentstack.com/cve/badge/CVE-2026-40199.svg)](https://tridentstack.com/cve/CVE-2026-40199)

HTML

<a href="https://tridentstack.com/cve/CVE-2026-40199"><img src="https://tridentstack.com/cve/badge/CVE-2026-40199.svg" alt="CVE-2026-40199"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-04-21.