2 matches found
Remote Code Execution
JYaml is vulnerable to remote code execution. The library allows unsafe deserialization via the load function, allowing an attacker to execute arbitrary code on the system using a malicious .yml file...
JYaml Code Execution Vulnerability
JYaml is a Java library for using the Yaml file format . A security vulnerability exists in JYaml 1.3 and earlier versions. An attacker can exploit the vulnerability to execute code with the help of a malicious payload...