Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Osbs-client Project Subscribe
Filtered by product Osbs-client
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-10135 1 Osbs-client Project 1 Osbs-client 2022-11-07 6.5 MEDIUM 7.2 HIGH
A flaw was found in the yaml.load() function in the osbs-client versions since 0.46 before 0.56.1. Insecure use of the yaml.load() function allowed the user to load any suspicious object for code execution via the parsing of malicious YAML files.