Skip to main content

Libyaml

3 CVEs product

Monthly

CVE-2014-9130 MEDIUM POC THREAT This Month

scanner.c in LibYAML 0.1.5 and 0.1.6, as used in the YAML-LibYAML (aka YAML-XS) module for Perl, allows context-dependent attackers to cause a denial of service (assertion failure and crash) via. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 55.3%.

Denial Of Service Libyaml
NVD
CVSS 2.0
5.0
EPSS
55.3%
Threat
4.2
CVE-2014-2525 MEDIUM POC THREAT This Month

Heap-based buffer overflow in the yaml_parser_scan_uri_escapes function in LibYAML before 0.1.6 allows context-dependent attackers to execute arbitrary code via a long sequence of percent-encoded. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 63.2%.

RCE Buffer Overflow Libyaml Leap Opensuse
NVD VulDB
CVSS 2.0
6.8
EPSS
63.2%
Threat
4.8
CVE-2013-6393 npm MEDIUM PATCH This Month

The yaml_parser_scan_tag_uri function in scanner.c in LibYAML before 0.1.5 performs an incorrect cast, which allows remote attackers to cause a denial of service (application crash) and possibly. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Buffer Overflow Denial Of Service RCE Libyaml Ubuntu Linux +4
NVD
CVSS 2.0
6.8
EPSS
8.1%
EPSS 55% 4.2 CVSS 5.0
MEDIUM POC THREAT This Month

scanner.c in LibYAML 0.1.5 and 0.1.6, as used in the YAML-LibYAML (aka YAML-XS) module for Perl, allows context-dependent attackers to cause a denial of service (assertion failure and crash) via. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 55.3%.

Denial Of Service Libyaml
NVD
EPSS 63% 4.8 CVSS 6.8
MEDIUM POC THREAT This Month

Heap-based buffer overflow in the yaml_parser_scan_uri_escapes function in LibYAML before 0.1.6 allows context-dependent attackers to execute arbitrary code via a long sequence of percent-encoded. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 63.2%.

RCE Buffer Overflow Libyaml +2
NVD VulDB
EPSS 8% CVSS 6.8
MEDIUM PATCH This Month

The yaml_parser_scan_tag_uri function in scanner.c in LibYAML before 0.1.5 performs an incorrect cast, which allows remote attackers to cause a denial of service (application crash) and possibly. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Buffer Overflow Denial Of Service RCE +6
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy