CVE-2015-8549

Name of the Vulnerable Software and Affected Versions: PyAMF versions prior to 0.8.0

Description: The issue allows remote attackers to cause a denial of service or read arbitrary files via a crafted Action Message Format (AMF) payload. This is due to an XML external entity (XXE) vulnerability. PyAMF provides Action Message Format (AMF) support for Python, compatible with the Adobe Flash Player, and includes integration with various Python web frameworks.

Recommendations: For versions prior to 0.8.0, update to version 0.8.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the AMF payload processing functionality until a patch is applied.