Package impact
Maven / org.yaml:snakeyaml
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-1471 | high | — | 9.0 | 4y ago | SnakeYaml Constructor Deserialization Remote Code Execution | |||
| CVE-2022-38749 | high | — | 8.0 | 4y ago | snakeYAML before 1.31 vulnerable to Denial of Service due to Out-of-bounds Write | |||
| CVE-2022-38751 | high | — | 8.0 | 4y ago | snakeYAML before 1.31 vulnerable to Denial of Service due to Out-of-bounds Write | |||
| CVE-2022-38752 | high | — | 8.0 | 4y ago | snakeYAML before 1.32 vulnerable to Denial of Service due to Out-of-bounds Write | |||
| CVE-2022-38750 | high | — | 8.0 | 4y ago | snakeYAML before 1.31 vulnerable to Denial of Service due to Out-of-bounds Write | |||
| CVE-2022-25857 | medium | — | 5.5 | 4y ago | Uncontrolled Resource Consumption in snakeyaml | |||
| CVE-2017-18640 | medium | — | 5.5 | 5y ago | RHSA-2020:4807: prometheus-jmx-exporter security update (Moderate) |