Vulnerability Details CVE-2017-6440
The parse_data_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (memory allocation error) via a crafted plist file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 32.1%
CVSS Severity
CVSS v3 Score 5.0
CVSS v2 Score 1.9
References
Products affected by CVE-2017-6440
-
cpe:2.3:a:libplist_project:libplist:1.12