CVE-2022-1471
See a problem?- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-1471
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-1471.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-1471
- Aliases
- Related
- Published
- 2022-12-01T11:15:10Z
- Modified
- 2024-09-11T06:13:44.808862Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
SnakeYaml's Constructor() class does not restrict types which can be instantiated during deserialization. Deserializing yaml content provided by an attacker can lead to remote code execution. We recommend using SnakeYaml's SafeConsturctor when parsing untrusted content to restrict deserialization. We recommend upgrading to version 2.0 and beyond.
- References
-
- https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2
- https://security.netapp.com/advisory/ntap-20230818-0015/
- https://security.netapp.com/advisory/ntap-20240621-0006/
- https://github.com/mbechler/marshalsec
- https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true
- https://bitbucket.org/snakeyaml/snakeyaml/issues/561/cve-2022-1471-vulnerability-in#comment-64581479
- http://packetstormsecurity.com/files/175095/PyTorch-Model-Server-Registration-Deserialization-Remote-Code-Execution.html
- http://www.openwall.com/lists/oss-security/2023/11/19/1
- https://groups.google.com/g/kubernetes-security-announce/c/mwrakFaEdnc
- https://security-tracker.debian.org/tracker/CVE-2022-1471
Affected packages
Debian:11 / snakeyaml
Package
- Name
- snakeyaml
- Purl
- pkg:deb/debian/snakeyaml?arch=source
Debian:12 / snakeyaml
Package
- Name
- snakeyaml
- Purl
- pkg:deb/debian/snakeyaml?arch=source
Debian:13 / snakeyaml
Package
- Name
- snakeyaml
- Purl
- pkg:deb/debian/snakeyaml?arch=source
Git / bitbucket.org/snakeyaml/snakeyaml
Affected ranges
- Type
- GIT
- Repo
- https://bitbucket.org/snakeyaml/snakeyaml
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed59ddbb3304bb8e22e2004d74cddaf9ed4086632e
Affected versions
1.*
1.6rc2
snakeyaml-1.*
snakeyaml-1.19
snakeyaml-1.20
snakeyaml-1.21
snakeyaml-1.22
snakeyaml-1.23
snakeyaml-1.24
snakeyaml-1.25
snakeyaml-1.26
snakeyaml-1.27
snakeyaml-1.28
snakeyaml-1.29
snakeyaml-1.30
snakeyaml-1.31
snakeyaml-1.32
snakeyaml-1.33
v1.*
v1.1
v1.10
v1.11
v1.12
v1.13
v1.15
v1.16
v1.17
v1.18
v1.2
v1.3
v1.4
v1.4rc1
v1.5
v1.5rc1
v1.6
v1.6rc1
v1.7
v1.7rc1
v1.8
v1.9