K000139901: PyYAML vulnerability CVE-2017-18342

🗓️ 05 Jun 2024 16:30:23Reported by f5Type

f5🔗 my.f5.com👁 32 Views

PyYAML CVE-2017-18342 code execution fi

Reporter	Title	Published	Views	Family All 97
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities	1 Aug 202314:54	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Security Vulnerabilities were identified in IBM Security Verify Access.	9 Jan 202420:27	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation Fixes for April 2024.	29 Apr 202502:34	–	ibm
GithubExploit	Exploit for Deserialization of Untrusted Data in Pyyaml	29 Aug 202510:27	–	githubexploit
Tenable Nessus	Alibaba Cloud Linux 3 : 0269: PyYAML (ALINUX3-SA-2024:0269)	14 May 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP3 : PyYAML (EulerOS-SA-2019-1040)	15 Feb 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP5 : PyYAML (EulerOS-SA-2019-1041)	15 Feb 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP2 : PyYAML (EulerOS-SA-2019-1056)	22 Feb 201900:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.5.4 : PyYAML (EulerOS-SA-2019-1224)	9 Apr 201900:00	–	nessus
Tenable Nessus	EulerOS Virtualization for ARM 64 3.0.2.0 : PyYAML (EulerOS-SA-2019-1615)	30 May 201900:00	–	nessus

Vulners

Node

f5 big-ip_aamRange17.5.0–17.5.1

OR

f5 big-ip_afmRange17.5.0–17.5.1

OR

f5 big-ip_analyticsRange17.5.0–17.5.1

OR

f5 big-ip_apmRange17.5.0–17.5.1

OR

f5 big-ip_asmRange17.5.0–17.5.1

OR

f5 big-ip_ddos_hybrid_defenderRange17.5.0–17.5.1

OR

f5 big-ip_dnsRange17.5.0–17.5.1

OR

f5 big-ip_fpsRange17.5.0–17.5.1

OR

f5 big-ip_link_controllerRange17.5.0–17.5.1

OR

f5 big-ip_ltmRange17.5.0–17.5.1

OR

f5 big-ip_pemRange17.5.0–17.5.1

OR

f5 big-ip_ssl_orchestratorRange17.5.0–17.5.1

OR

f5 big-ip_aamRange17.1.0–17.1.2

OR

f5 big-ip_afmRange17.1.0–17.1.2

OR

f5 big-ip_analyticsRange17.1.0–17.1.2

OR

f5 big-ip_apmRange17.1.0–17.1.2

OR

f5 big-ip_asmRange17.1.0–17.1.2

OR

f5 big-ip_ddos_hybrid_defenderRange17.1.0–17.1.2

OR

f5 big-ip_dnsRange17.1.0–17.1.2

OR

f5 big-ip_fpsRange17.1.0–17.1.2

OR

f5 big-ip_link_controllerRange17.1.0–17.1.2

OR

f5 big-ip_ltmRange17.1.0–17.1.2

OR

f5 big-ip_pemRange17.1.0–17.1.2

OR

f5 big-ip_ssl_orchestratorRange17.1.0–17.1.2

OR

f5 big-ip_aamRange16.1.0–16.1.5

OR

f5 big-ip_afmRange16.1.0–16.1.5

OR

f5 big-ip_analyticsRange16.1.0–16.1.5

OR

f5 big-ip_apmRange16.1.0–16.1.5

OR

f5 big-ip_asmRange16.1.0–16.1.5

OR

f5 big-ip_ddos_hybrid_defenderRange16.1.0–16.1.5

OR

f5 big-ip_dnsRange16.1.0–16.1.5

OR

f5 big-ip_fpsRange16.1.0–16.1.5

OR

f5 big-ip_link_controllerRange16.1.0–16.1.5

OR

f5 big-ip_ltmRange16.1.0–16.1.5

OR

f5 big-ip_pemRange16.1.0–16.1.5

OR

f5 big-ip_ssl_orchestratorRange16.1.0–16.1.5

OR

f5 big-ip_aamRange15.1.0–15.1.10

OR

f5 big-ip_afmRange15.1.0–15.1.10

OR

f5 big-ip_analyticsRange15.1.0–15.1.10

OR

f5 big-ip_apmRange15.1.0–15.1.10

OR

f5 big-ip_asmRange15.1.0–15.1.10

OR

f5 big-ip_ddos_hybrid_defenderRange15.1.0–15.1.10

OR

f5 big-ip_dnsRange15.1.0–15.1.10

OR

f5 big-ip_fpsRange15.1.0–15.1.10

OR

f5 big-ip_link_controllerRange15.1.0–15.1.10

OR

f5 big-ip_ltmRange15.1.0–15.1.10

OR

f5 big-ip_pemRange15.1.0–15.1.10

OR

f5 big-ip_ssl_orchestratorRange15.1.0–15.1.10

OR

f5 big-iq_centralized_managementRange8.1.0–8.4.0

06 Feb 2026 15:50Current

7.8High risk

Vulners AI Score7.8

CVSS 27.5

CVSS 3.19.8

EPSS0.06081

pyyaml cve-2017-18342 code execution fix untrusted data administrator privileges