Lucene search
K

6 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:5 a.m.3 views

SUSE CVE-2019-20478

In ruamel.yaml through 0.16.7, the load method allows remote code execution if the application calls this method with an untrusted argument. In other words, this issue affects developers who are unaware of the need to use methods such as safeload in these use cases...

7.3CVSS8.2AI score0.0675EPSS
Exploits0References3
OSV
OSV
added 2020/02/19 4:15 a.m.9 views

CVE-2019-20478

In ruamel.yaml through 0.16.7, the load method allows remote code execution if the application calls this method with an untrusted argument. In other words, this issue affects developers who are unaware of the need to use methods such as safeload in these use cases...

9.8CVSS7.6AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/02/19 4:15 a.m.23 views

CVE-2019-20478

In ruamel.yaml through 0.16.7, the load method allows remote code execution if the application calls this method with an untrusted argument. In other words, this issue affects developers who are unaware of the need to use methods such as safeload in these use cases...

10CVSS7.3AI score0.0675EPSS
Exploits0References2
CVE
CVE
added 2020/02/19 3:9 a.m.141 views

CVE-2019-20478

CVE-2019-20478 affects ruamel.yaml up to version 0.16.7, where its load method can lead to remote code execution when invoked with untrusted input. The issue arises from using load instead of safer alternatives like safe_load in scenarios where input may be tainted by an attacker. The vulnerabili...

10CVSS9.7AI score0.0675EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/02/19 3:9 a.m.26 views

CVE-2019-20478

In ruamel.yaml through 0.16.7, the load method allows remote code execution if the application calls this method with an untrusted argument. In other words, this issue affects developers who are unaware of the need to use methods such as safeload in these use cases...

9.8AI score0.0675EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2020/02/19 3:9 a.m.39 views

CVE-2019-20478

In ruamel.yaml through 0.16.7, the load method allows remote code execution if the application calls this method with an untrusted argument. In other words, this issue affects developers who are unaware of the need to use methods such as safeload in these use cases...

10CVSS9.1AI score0.0675EPSS
Exploits0
Rows per page
Query Builder