Lucene search
CVE-2017-18640
🗓️ 12 Dec 2019 03:10:15Reported by Debian Security Bug TrackerType 
debiancve🔗 security-tracker.debian.org👁 27 Views
SnakeYAML Alias feature allows entity expansion during load operation (CVE-2017-18640
Show more
| Reporter | Title | Published | Views | Family All 199 |
|---|---|---|---|---|
 | openSUSE 15 Security Update : snakeyaml (openSUSE-SU-2021:1876-1) | 16 Jul 202100:00 | – | nessus |
| AlmaLinux 8 : prometheus-jmx-exporter (ALSA-2020:4807) | 9 Feb 202200:00 | – | nessus |
| Linux Distros Unpatched Vulnerability : CVE-2017-18640 | 4 Mar 202500:00 | – | nessus |
| SUSE SLED15 / SLES15 Security Update : snakeyaml (SUSE-SU-2021:1876-1) | 11 Jun 202100:00 | – | nessus |
| Rocky Linux 8 : prometheus-jmx-exporter (RLSA-2020:4807) | 7 Nov 202300:00 | – | nessus |
| Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS : SnakeYAML vulnerability (USN-7368-1) | 24 Mar 202500:00 | – | nessus |
| RHEL 8 : prometheus-jmx-exporter (RHSA-2020:4807) | 4 Nov 202000:00 | – | nessus |
| CentOS 8 : prometheus-jmx-exporter (CESA-2020:4807) | 1 Feb 202100:00 | – | nessus |
| Fedora 31 : snakeyaml (2020-23012fafbc) | 27 Apr 202000:00 | – | nessus |
| Oracle Linux 8 : prometheus-jmx-exporter (ELSA-2020-4807) | 12 Nov 202000:00 | – | nessus |
10
| OS | OS Version | Architecture | Package | Package Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | snakeyaml | 1.25+ds-3 | snakeyaml_1.25+ds-3_all.deb |
| Debian | 11 | all | snakeyaml | 1.25+ds-3 | snakeyaml_1.25+ds-3_all.deb |
| Debian | 999 | all | snakeyaml | 1.25+ds-3 | snakeyaml_1.25+ds-3_all.deb |
| Debian | 13 | all | snakeyaml | 1.25+ds-3 | snakeyaml_1.25+ds-3_all.deb |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo12 Dec 2019 03:15Current
7High risk
Vulners AI Score7
CVSS25
CVSS37.5
EPSS0.02166