Lucene search

GitHub Advisory DatabaseGHSA-4QHR-Q7WF-94XP

HistoryMay 24, 2022 - 5:09 p.m.

Deserialization of Untrusted Data in JYaml

2022-05-2417:09:22

CWE-502

GitHub Advisory Database

github.com

jyaml

deserialization

untrusted data

remote code execution

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.028

Percentile

90.7%

JSON

JYaml through 1.3 allows remote code execution during deserialization of a malicious payload through the load() function. NOTE: this is a discontinued product.

Affected configurations

Vulners

Node

org.jyamljyamlRange≤1.3

VendorProductVersionCPE
org.jyamljyaml*cpe:2.3:a:org.jyaml:jyaml:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
org.jyaml	jyaml	*	cpe:2.3:a:org.jyaml:jyaml::::::::

References

gist.github.com/j0lt-github/f5141abcacae63d434ecae211422153a

github.com/advisories/GHSA-4qhr-q7wf-94xp

github.com/mbechler/marshalsec

github.com/mbechler/marshalsec/blob/master/marshalsec.pdf

nvd.nist.gov/vuln/detail/CVE-2020-8441

security.netapp.com/advisory/ntap-20200313-0001/

sourceforge.net/p/jyaml/bugs/

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.028

Percentile

90.7%

JSON

Related for GHSA-4QHR-Q7WF-94XP