9 matches found
EUVD-2025-16577
Malicious code in bioql PyPI...
The vulnerability of the `open()` function in the YAML-LibYAML Perl programming language interpreter allows a malicious actor to gain unauthorized access and modify any file.
The vulnerability of the open function in the YAML-LibYAML Perl programming language interpreter involves the use of files and directories accessible from external parties. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to and modify a...
CVE-2025-40908
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
CVE-2025-40908
CVE-2025-40908 affects perl-YAML-LibYAML; versions before 0.903.0 are vulnerable due to a 2-argument open that can modify existing files. The issue is confirmed in multiple sources; impact is described as high for confidentiality and integrity with critical severity (CVSS 3.1: 9.1). A fixed versi...
CVE-2025-40908
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
CVE-2025-40908 YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
CVE-2025-40908 YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
CVE-2025-40908
YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...
CVE-2012-1152
Multiple format string vulnerabilities in the error reporting functionality in the YAML::LibYAML aka YAML-LibYAML and perl-YAML-LibYAML module 0.38 for Perl allow remote attackers to cause a denial of service process crash via format string specifiers in a 1 YAML stream to the Load function, 2 YA...