CVE-2017-18640

Publication date

2019-12-12 00:00:00

Family

mitre

State

PUBLISHED

Description

The Alias feature in SnakeYAML before 1.26 allows entity expansion during a load operation, a related issue to CVE-2003-1564.