The Alias feature in SnakeYAML prior to 1.26 allows entity expansion during a load operation, a related issue to CVE-2003-1564.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
snakeyaml project snakeyaml |
||
fedoraproject fedora 31 |
||
fedoraproject fedora 32 |
||
quarkus quarkus |
||
oracle peoplesoft enterprise pt peopletools 8.56 |
||
oracle peoplesoft enterprise pt peopletools 8.57 |
||
oracle peoplesoft enterprise pt peopletools 8.58 |