Lucene search
+L

45 matches found

astralinux
astralinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in pyyaml

A vulnerability was discovered in the PyYAML library in versions prior to 5.4. In these versions, the library is susceptible to arbitrary code execution when it processes untrusted YAML files using the fullload method or the FullLoader loader. Applications that use this library to process untrust...

10CVSS8.3AI score0.05984EPSS
Exploits1References2
redos
redos
added 2024/03/13 12:0 a.m.16 views

ROS-2-1353

2.1353 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

9.8CVSS7.9AI score0.05984EPSS
Exploits1
redos
redos
added 2024/03/13 12:0 a.m.14 views

ROS-2-1328

2.1328 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

9.8CVSS7.9AI score0.05984EPSS
Exploits1
redos
redos
added 2024/03/13 12:0 a.m.17 views

ROS-2-1503

2.1503 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user-entered data when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the...

10CVSS8.1AI score0.05984EPSS
Exploits1
redos
redos
added 2024/03/13 12:0 a.m.14 views

ROS-2-1309

2.1309 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user-entered data when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the...

9.8CVSS9.8AI score0.05984EPSS
Exploits1
redos
redos
added 2024/03/13 12:0 a.m.28 views

ROS-2-972

2.972 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability coul...

9.8CVSS7.8AI score0.05984EPSS
Exploits1
gentoo
gentoo
added 2024/02/26 12:0 a.m.78 views

PyYAML: Arbitrary Code Execution

Background PyYAML is a YAML parser and emitter for Python. Description A vulnerability has been discovered in PyYAML. Please review the CVE identifier referenced below for details. Impact A vulnerability was discovered in the PyYAML library, where it is susceptible to arbitrary code execution whe...

10CVSS8.3AI score0.05984EPSS
Exploits2
mscve
mscve
added 2023/11/07 8:0 a.m.6 views

A vulnerability was discovered in the PyYAML library in versions before 5.4 where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. This flaw allows an attacker to execute arbitrary code on the system by abusing the python/object/new constructor. This flaw is due to an incomplete fix for CVE-2020-1747.

...

10CVSS7AI score0.05984EPSS
Exploits2
redos
redos
added 2023/07/06 12:0 a.m.8 views

ROS-2-2157

2.2157 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

10CVSS7.7AI score0.05984EPSS
Exploits1
redos
redos
added 2023/07/06 12:0 a.m.23 views

ROS-2-539

2.539 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user-entered data when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the...

9.8CVSS8.6AI score0.05984EPSS
Exploits1
susecve
susecve
added 2023/02/15 3:57 a.m.5 views

SUSE CVE-2020-14343

A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the fullload method or with the FullLoader loader. Applications that use the library to process untrusted input may be...

8.8CVSS8.3AI score0.05984EPSS
Exploits1References33
nessus
nessus
added 2022/08/20 12:0 a.m.71 views

SUSE SLES15 Security Update : python-PyYAML (SUSE-SU-2022:2841-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2841-1 advisory. - CVE-2020-1747: Fixed an arbitrary code execution issue when parsing an untrusted YAML file with the default loader bsc1165439. -...

10CVSS7.4AI score0.05984EPSS
Exploits2References7
nessus
nessus
added 2022/01/06 12:0 a.m.27 views

EulerOS Virtualization 3.0.2.6 : PyYAML (EulerOS-SA-2021-2902)

According to the versions of the PyYAML package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution...

10CVSS8.4AI score0.05984EPSS
Exploits2References2
redos
redos
added 2021/12/24 12:0 a.m.16 views

ROS-2-1655

2.1655 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

9.8CVSS9.9AI score0.05984EPSS
Exploits1
redos
redos
added 2021/09/08 12:0 a.m.5 views

ROS-2-2184

2.2184 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

10CVSS8.1AI score0.05984EPSS
Exploits2
redos
redos
added 2021/09/08 12:0 a.m.8 views

ROS-2-2125

2.2125 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

10CVSS8.8AI score0.05984EPSS
Exploits1
redos
redos
added 2021/09/08 12:0 a.m.5 views

ROS-2-2248

2.2248 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

10CVSS8.1AI score0.05984EPSS
Exploits1
redos
redos
added 2021/09/08 12:0 a.m.28 views

ROS-2-592

2.592 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability coul...

10CVSS6.1AI score0.05984EPSS
Exploits8
redos
redos
added 2021/09/08 12:0 a.m.17 views

ROS-2-1390

2.1390 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

9.8CVSS7.9AI score0.05984EPSS
Exploits1
redos
redos
added 2021/09/08 12:0 a.m.14 views

ROS-2-1011

2.1011 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

9.8CVSS7.8AI score0.05984EPSS
Exploits1
Rows per page
Query Builder