EPSS
Percentile
69.6%
org.yaml:snakeyaml is vulnerable to denial of service attacks. The parser is running on user supplied input, which allows an attacker to parse untrusted YAML files causing an application crash through stack-based buffer overflows.
bitbucket.org/snakeyaml/snakeyaml/issues/531/stackoverflow-oss-fuzz-47081
bugs.chromium.org/p/oss-fuzz/issues/detail?id=47081
github.com/advisories/GHSA-9w3m-gqgf-c4p9
security.gentoo.org/glsa/202305-28