VYPR

email.utils.parseaddr

by Python (programming language)

CVEs (1)

  • CVE-2023-36632HigJun 25, 2023
    risk 0.49cvss 7.5epss 0.02

    The legacy email.utils.parseaddr function in Python through 3.11.4 allows attackers to trigger "RecursionError: maximum recursion depth exceeded while calling a Python object" via a crafted argument. This argument is plausibly an untrusted value from an application's input data…