An XML External Entity (XXE) issue was discovered in Python through 3.9.1. The plistlib module no longer accepts entity declarations in XML plist files to avoid XML vulnerabilities.
History

Thu, 03 Oct 2024 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-08-22T00:00:00

Updated: 2024-10-03T17:41:29.341Z

Reserved: 2023-07-23T00:00:00

Link: CVE-2022-48565

cve-icon Vulnrichment

Updated: 2024-08-03T15:17:54.848Z

cve-icon NVD

Status : Modified

Published: 2023-08-22T19:16:32.007

Modified: 2024-11-21T07:33:30.950

Link: CVE-2022-48565

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-08-22T00:00:00Z

Links: CVE-2022-48565 - Bugzilla