Arbitrary Code Execution

🗓️ 08 Nov 2017 09:41:04Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 8 Views

owlmixin vulnerability in YAML parse

Reporter	Title	Published	Views	Family All 8
OSV	Unsafe deserialization in owlmixin	13 Jul 201816:01	–	osv
OSV	PYSEC-2017-22	8 Nov 201703:29	–	osv
OSV	CVE-2017-16618	8 Nov 201703:29	–	osv
CVE	CVE-2017-16618	8 Nov 201703:29	–	cve
Cvelist	CVE-2017-16618	8 Nov 201703:00	–	cvelist
NVD	CVE-2017-16618	8 Nov 201703:29	–	nvd
Prion	Design/Logic Flaw	8 Nov 201703:29	–	prion
Github Security Blog	Unsafe deserialization in owlmixin	13 Jul 201816:01	–	github

Vulners

Node

owlmixinRange≤2.0.0a11

Source	Link
github	www.github.com/tadashi-aikawa/owlmixin/issues/12
github	www.github.com/tadashi-aikawa/owlmixin/commit/5d0575303f6df869a515ced4285f24ba721e0d4e
joel-malwarebenchmark	www.joel-malwarebenchmark.github.io/blog/2017/11/08/cve-2017-16618-convert-through-owlmixin/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 Nov 2017 09:04Current

9.5High risk

Vulners AI Score9.5

EPSS0.01414