Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:36956
HistorySep 06, 2022 - 9:31 a.m.

Denial Of Service (DoS)

2022-09-0609:31:37
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
26
yaml
denial of service
buffer overflow

EPSS

0.003

Percentile

69.6%

org.yaml:snakeyaml is vulnerable to denial of service attacks. The parser is running on user supplied input, which allows an attacker to parse untrusted YAML files causing an application crash through stack-based buffer overflows.