Security Advisory

CVE-2022-38749

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-09-05 00:00:00

Last updated 2024-08-03 11:02:14

Assigner Google

State PUBLISHED

Description

Using snakeYAML to parse untrusted YAML files may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow.

← Browse all CVEs View on cve.org ↗