Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Search Type: Search All
  • CPE Vendor: cpe:/:snakeyaml_project
  • CPE Product: cpe:/:snakeyaml_project:snakeyaml
  • CPE Product Version: cpe:/:snakeyaml_project:snakeyaml:1.21
There are 1 matching records.
Displaying matches 1 through 1.
Vuln ID Summary CVSS Severity
CVE-2017-18640

The Alias feature in SnakeYAML 1.18 allows entity expansion during a load operation, a related issue to CVE-2003-1564.

Published: December 11, 2019; 10:15:10 PM -0500
V3.1: 7.5 HIGH
V2.0: 5.0 MEDIUM