0.004 Low
EPSS
Percentile
72.5%
modulemd is vulnerable to remote code execution (RCE). The vulnerability is possible because it is using insecure function yaml.load_all.
yaml.load_all
pagure.io/modulemd/issue/55