Lucene search

K
cbl_marinerCBL MarinerCBLMARINER:10894
HistoryJul 24, 2024 - 9:09 a.m.

CVE-2022-38750 affecting package snakeyaml 1.25-2

2024-07-2409:09:31
CBL Mariner
cve-2022-38750
package snakeyaml
not applicable
unix

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

9.4

Confidence

High

EPSS

0.001

Percentile

32.6%

CVE-2022-38750 affecting package snakeyaml 1.25-2. This CVE either no longer is or was never applicable.

OSVersionArchitecturePackageVersionFilename
CBL-Mariner2.0allsnakeyaml<=ย 1.25-2UNKNOWN

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

9.4

Confidence

High

EPSS

0.001

Percentile

32.6%