Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-0247

Malware in sbrugna...

7.8CVSS7.5AI score0.02415EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 8:44 a.m.3 views

CVE-2024-23730

The OpenAPI and ChatGPT plugin loaders in LlamaHub aka llama-hub before 0.0.67 allow attackers to execute arbitrary code because safeload is not used for YAML...

9.8CVSS7.8AI score0.01192EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2021/12/09 6:35 p.m.39 views

Code injection via unsafe YAML loading

Impact Sockeye uses YAML to store model and data configurations on disk. Versions below 2.3.24 use unsafe YAML loading, which can be made to execute arbitrary code embedded in config files. An attacker can add malicious code to the config file of a trained model and attempt to convince users to...

7.8CVSS4.3AI score0.02415EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2018/07/01 10:29 p.m.41 views

CVE-2018-13043

scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing...

9.8CVSS9.7AI score0.02476EPSS
Exploits0References2
OSV
OSV
added 2018/07/01 10:29 p.m.5 views

CVE-2018-13043

scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing...

9.8CVSS9.6AI score
Exploits0References2
OSV
OSV
added 2018/07/01 10:29 p.m.1 views

DEBIAN-CVE-2018-13043

scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing...

9.8CVSS9AI score0.02476EPSS
Exploits0References1
Rows per page
Query Builder