CVE-2017-18640

Опубликовано: 01 окт. 2025

Источник: msrc

CVSS3: 7.5

EPSS Низкий

Описание

The Alias feature in SnakeYAML before 1.26 allows entity expansion during a load operation, a related issue to CVE-2003-1564.

EPSS

Процентиль: 84%

0.02166

Низкий

7.5 High

CVSS3

CVE-2017-18640

CVSS3: 7.5

ubuntu

около 6 лет назад

The Alias feature in SnakeYAML before 1.26 allows entity expansion during a load operation, a related issue to CVE-2003-1564.

CVE-2017-18640

CVSS3: 7.6

redhat

около 6 лет назад

The Alias feature in SnakeYAML before 1.26 allows entity expansion during a load operation, a related issue to CVE-2003-1564.

CVE-2017-18640

CVSS3: 7.5

nvd

около 6 лет назад

The Alias feature in SnakeYAML before 1.26 allows entity expansion during a load operation, a related issue to CVE-2003-1564.

CVE-2017-18640

CVSS3: 7.5

debian

около 6 лет назад

The Alias feature in SnakeYAML before 1.26 allows entity expansion dur ...

openSUSE-SU-2021:1876-1

suse-cvrf

больше 4 лет назад

Security update for snakeyaml

EPSS

Процентиль: 84%

0.02166

Низкий

7.5 High

CVSS3