HIGH
pyasn1
CVE published 2026-03-18
CVE-2026-30922
CVE-2026-30922 is a Denial of Service (DoS) vulnerability in pyasn1, a generic ASN.1 library for Python. The vulnerability is caused by uncontrolled recursion when decoding ASN.1 data with deeply nested structures. This issue can be exploited by an attacker supplying a crafted payload containing thousands of nested SEQUENCE (0x30) or SET (0x31) tags with 'Indefinite Length' (0x80) markers, which forces th [truncated]