0.004 Low
EPSS
Percentile
72.7%
The Pallets Project Flask before 1.0 is affected by unexpected memory usage. The impact is denial of service. The attack vector is crafted encoded JSON data. The fixed version is 1. NOTE this may overlap CVE-2018-1000656.
github.com/pallets/flask
nvd.nist.gov/vuln/detail/CVE-2019-1010083
www.palletsprojects.com/blog/flask-1-0-released