DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2022-25857

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2022-25857

CGA ID

CGA-8mhp-9r8c-whw4

Severity

7.5

High

CVSS V3

Description

The package org.yaml:snakeyaml from 0 and before 1.31 are vulnerable to Denial of Service (DoS) due missing to nested depth limitation for collections.

References

Affected packages


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images