EPSS
Percentile
76.8%
Prototype pollution vulnerability via .parse() in Plist allows attackers to cause a Denial of Service (DoS) and may lead to remote code execution.
.parse()
github.com/TooTallNate/plist.js
github.com/TooTallNate/plist.js/commit/96e2303d059e6be0c9e0c4773226d14b4758de52
github.com/TooTallNate/plist.js/issues/114
github.com/TooTallNate/plist.js/pull/118
nvd.nist.gov/vuln/detail/CVE-2022-22912