Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2023-47163

Disclosure Date: November 13, 2023 (last updated November 17, 2023)
Remarshal prior to v0.17.1 expands YAML alias nodes unlimitedly, hence Remarshal is vulnerable to Billion Laughs Attack. Processing untrusted YAML files may cause a denial-of-service (DoS) condition.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0