CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

66 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в python3.11, python3.7

When loading a plist file, the plistlib module reads data in a size specified by the file itself. This means that a malicious file can cause out-of-memory OOM and denial-of-service DoS issues...

5.5CVSS7.1AI score0.00031EPSS

Exploits0References2

RedHat Linux•added 2026/05/19 1:35 p.m.•12 views

cpython: Out-of-memory when loading Plist

A flaw was found in the plistlib module in the Python standard library. The amount of data to read from a Plist file is specified in the file itself. This issue allows a specially crafted Plist file to cause an application to allocate a large amount of memory, potentially resulting in allocations...

5.5CVSS7AI score0.00031EPSS

Exploits0References6

RedHat Linux•added 2026/04/27 3:6 p.m.•3 views

cpython: Out-of-memory when loading Plist

5.5CVSS5.3AI score0.00031EPSS

Exploits0References6

OSV•added 2025/12/01 6:16 p.m.•1 views

AZL-71267 CVE-2025-13837 affecting package python3 for versions less than 3.12.9-7

When loading a plist file, the plistlib module reads data in size specified by the file itself, meaning a malicious file can cause OOM and DoS issues...

5.5CVSS5.7AI score0.00031EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-15497

Malware in sbrugna...

5CVSS7.1AI score0.0007EPSS

Exploits1References6

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-15496

Malware in sbrugna...

5CVSS7.1AI score0.0007EPSS

Exploits1References8

SUSE CVE•added 2023/02/15 4:49 a.m.•2 views

SUSE CVE-2017-6435

The parsestringnode function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service memory corruption via a crafted plist file...

5CVSS6.4AI score0.00105EPSS

Exploits1References4

SUSE CVE•added 2023/02/15 4:49 a.m.•1 views

SUSE CVE-2017-6438

Heap-based buffer overflow in the parseunicodenode function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service out-of-bounds write and possibly code execution via a crafted plist file...

5.9CVSS7.5AI score0.00086EPSS

Exploits1References4

SUSE CVE•added 2023/02/15 4:49 a.m.•3 views

SUSE CVE-2017-6436

The parsestringnode function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service memory allocation error via a crafted plist file...

5CVSS6.4AI score0.00076EPSS

Exploits1References4

SUSE CVE•added 2023/02/15 4:49 a.m.•3 views

SUSE CVE-2017-6440

The parsedatanode function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service memory allocation error via a crafted plist file...

5CVSS6.4AI score0.0007EPSS

Exploits1References6

SUSE CVE•added 2023/02/15 4:49 a.m.•3 views

SUSE CVE-2017-6439

Heap-based buffer overflow in the parsestringnode function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service out-of-bounds write via a crafted plist file...

3.3CVSS6.8AI score0.0007EPSS

Exploits1References4

SUSE CVE•added 2023/02/15 4:46 a.m.•1 views

SUSE CVE-2017-7982

Integer overflow in the plistfrombin function in bplist.c in libimobiledevice/libplist before 2017-04-19 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted plist file...

3.3CVSS7.1AI score0.00214EPSS

Exploits0References5

OSV•added 2017/08/17 6:39 a.m.•9 views

SUSE-SU-2017:2201-1 Security update for libplist

This update for libplist fixes the following issues: Security issues fixed: - CVE-2017-6439: Heap-based buffer overflow in the parsestringnode function. bsc1029638 - CVE-2017-6438: Heap-based buffer overflow in the parseunicodenode function. bsc1029706 - CVE-2017-6437: The base64encode function i...

7.3CVSS5.3AI score0.00105EPSS

Exploits5References11