What is CVE-2021-29510?

CVE-2021-29510 is a low-severity vulnerability in Samuelcolvin Pydantic, classified under Loop with Unreachable Exit Condition (Infinite Loop). CVSS score: 3.3/10. Published 2021-05-13.

How severe is CVE-2021-29510?

Low severity. CVSS v3 base score is 3.3 out of 10.

Vulnerability in Samuelcolvin Pydantic

CVE-2021-29510

Pydantic is a data validation and settings management using Python type hinting. In affected versions passing either `'infinity'`, `'inf'` or `float('inf')` (or their negatives) to `datetime` or `date` fields causes validation to run forev…

EPSS: 0.001 (20.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 3.3 (Low). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L.

Affected products

Samuelcolvin Pydantic — versions >= 1.8.0, < 1.8.2, >= 1.7.0, < 1.7.4, < 1.6.2

Weakness classification (CWE)

CWE-835 — Loop with Unreachable Exit Condition (Infinite Loop)

References

github.com/samuelcolvin/pydantic/security/advisories/GHSA-5jqp-qgf6-3pvh (x_refsource_CONFIRM)
github.com/samuelcolvin/pydantic/commit/7e83fdd2563ffac081db7ecdf1affa65ef38c468 (x_refsource_MISC)
FEDORA-2021-f8bb3ba3ec (vendor-advisory, x_refsource_FEDORA)
FEDORA-2021-4d3de3183f (vendor-advisory, x_refsource_FEDORA)
FEDORA-2021-e7fabd81fb (vendor-advisory, x_refsource_FEDORA)

Frequently asked questions

What is CVE-2021-29510?: CVE-2021-29510 is a low-severity vulnerability in Samuelcolvin Pydantic, classified under Loop with Unreachable Exit Condition (Infinite Loop). CVSS score: 3.3/10. Published 2021-05-13.
How severe is CVE-2021-29510?: Low severity. CVSS v3 base score is 3.3 out of 10.