Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2022-48564

read_ints in plistlib.py in Python through 3.9.1 is vulnerable to a potential DoS attack via CPU and RAM exhaustion when processing malformed Apple Property List files in binary format.

  • Published: Aug 22, 2023
  • Updated: Aug 27, 2023
  • CVE: CVE-2022-48564
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.5
  • AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWEs:

Software From Fixed in
python / python 3.9.0 3.9.1
python / python 3.7.0 3.7.10
python / python - 3.6.13
python / python 3.8.0 3.8.7