CVE-2015-8549

Published January 15th, 2020

View on NVD ↗

CVSS v3

7.1

HIGH

CVSS v2

5.8

MEDIUM

Affected

PROJECT

Description

XML external entity (XXE) vulnerability in PyAMF before 0.8.0 allows remote attackers to cause a denial of service or read arbitrary files via a crafted Action Message Format (AMF) payload.

hydralabs/pyamf

AMF for Python

GitHub

162