Vulnerability Details CVE-2017-11692
The function "Token& Scanner::peek" in scanner.cpp in yaml-cpp 0.5.3 and earlier allows remote attackers to cause a denial of service (assertion failure and application exit) via a '!2' string.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 75.2%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2017-11692
-
cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.2.0
-
cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.2.1
-
cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.2.2
-
cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.2.3
-
cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.2.4
-
cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.2.5
-
cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.2.6
-
cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.2.7
-
cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.3.0
-
cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.5.0
-
cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.5.1
-
cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.5.2
-
cpe:2.3:a:yaml-cpp_project:yaml-cpp:0.5.3