Lucene search

GitHub Advisory DatabaseGHSA-GW7G-QR8W-3448

HistoryNov 13, 2023 - 3:30 a.m.

Remarshal expands YAML alias nodes unlimitedly, hence Remarshal is vulnerable to Billion Laughs Attack

2023-11-1303:30:37

CWE-400

CWE-674

GitHub Advisory Database

github.com

remarshal

vulnerability

billion laughs attack

yaml

processing

denial-of-service

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

18.8%

JSON

Remarshal prior to v0.17.1 expands YAML alias nodes unlimitedly, hence Remarshal is vulnerable to Billion Laughs Attack. Processing untrusted YAML files may cause a denial-of-service (DoS) condition.

Affected configurations

Vulners

Node

remarshal_projectremarshalRange<0.17.1

VendorProductVersionCPE
remarshal_projectremarshal*cpe:2.3:a:remarshal_project:remarshal:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
remarshal_project	remarshal	*	cpe:2.3:a:remarshal_project:remarshal::::::::

References

github.com/advisories/GHSA-gw7g-qr8w-3448

github.com/pypa/advisory-database/tree/main/vulns/remarshal/PYSEC-2023-236.yaml

github.com/remarshal-project/remarshal/commit/fd6ac799a02f533c3fc243b49cdd6d21aa7ee494

github.com/remarshal-project/remarshal/releases/tag/v0.17.1

jvn.jp/en/jp/JVN86156389/

nvd.nist.gov/vuln/detail/CVE-2023-47163

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

18.8%

JSON

Related for GHSA-GW7G-QR8W-3448