Risk Scores
CVSS v3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | python-min | 0, 3.7.0, 3.8.0 |
Timeline
- Jan 16, 2025 CVE Published
- Aug 11, 2025 CVE Updated
read_ints in plistlib.py in Python through 3.9.1 is vulnerable to a potential DoS attack via CPU and RAM exhaustion when processing malformed Apple Property List files in binary format.
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | python-min | 0, 3.7.0, 3.8.0 |