TencentOS Server 4: python3.11 (TSSA-2025:0968)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0968 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

CVE-2022-22912

Prototype pollution vulnerability via .parse in Plist before v3.0.4 allows attackers to cause a Denial of Service DoS and may lead to remote code execution...

USN-6513-1 python2.7, python3.5, python3.6 vulnerabilities

It was discovered that Python incorrectly handled certain plist files. If a user or an automated system were tricked into processing a specially crafted plist file, an attacker could possibly use this issue to consume resources, resulting in a denial of service. CVE-2022-48564 It was discovered...

2app (>=1.0.0 <=1.2.8), 2fa-cli (>=1.0.0 <=1.0.4) +4339 more potentially affected by CVE-2022-22912 via plist (>=0.2.1 <=3.0.4)

plist NPM version =0.2.1, =1.0.0, =1.0.0, =0.0.1, =1.0.0, =0.0.1, =1.0.0, =0.0.1-beta.0, =0.0.1, =0.0.12, =0.1.1, =1.0.0, =0.20.0, =0.21.1 - @allroundexperts/rn-swiper =1.0.1 - @andersnormal/react-native-primitives =0.0.1 and more Source cves: CVE-2022-22912 Source advisory: OSV:GHSA-4CPG-3VGW-48...

CVE-2022-22912

Prototype pollution vulnerability via .parse in Plist before v3.0.4 allows attackers to cause a Denial of Service DoS and may lead to remote code execution...