Vulnerability Details CVE-2018-13043
scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 78.7%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2018-13043
-
cpe:2.3:a:debian:devscripts:2.11.7
-
cpe:2.3:a:debian:devscripts:2.11.8
-
cpe:2.3:a:debian:devscripts:2.11.9
-
cpe:2.3:a:debian:devscripts:2.12.0
-
cpe:2.3:a:debian:devscripts:2.12.1
-
cpe:2.3:a:debian:devscripts:2.12.2
-
cpe:2.3:a:debian:devscripts:2.12.3
-
cpe:2.3:a:debian:devscripts:2.12.4
-
cpe:2.3:a:debian:devscripts:2.12.5
-
cpe:2.3:a:debian:devscripts:2.12.6
-
cpe:2.3:a:debian:devscripts:2.13.0
-
cpe:2.3:a:debian:devscripts:2.13.1
-
cpe:2.3:a:debian:devscripts:2.13.2
-
cpe:2.3:a:debian:devscripts:2.13.3
-
cpe:2.3:a:debian:devscripts:2.13.4
-
cpe:2.3:a:debian:devscripts:2.13.5
-
cpe:2.3:a:debian:devscripts:2.13.8
-
cpe:2.3:a:debian:devscripts:2.13.9
-
cpe:2.3:a:debian:devscripts:2.14.1
-
cpe:2.3:a:debian:devscripts:2.14.10
-
cpe:2.3:a:debian:devscripts:2.14.11
-
cpe:2.3:a:debian:devscripts:2.14.2
-
cpe:2.3:a:debian:devscripts:2.14.3
-
cpe:2.3:a:debian:devscripts:2.14.4
-
cpe:2.3:a:debian:devscripts:2.14.5
-
cpe:2.3:a:debian:devscripts:2.14.6
-
cpe:2.3:a:debian:devscripts:2.14.7
-
cpe:2.3:a:debian:devscripts:2.14.8
-
cpe:2.3:a:debian:devscripts:2.14.9
-
cpe:2.3:a:debian:devscripts:2.15.1
-
cpe:2.3:a:debian:devscripts:2.15.10
-
cpe:2.3:a:debian:devscripts:2.15.2
-
cpe:2.3:a:debian:devscripts:2.15.3
-
cpe:2.3:a:debian:devscripts:2.15.4
-
cpe:2.3:a:debian:devscripts:2.15.5
-
cpe:2.3:a:debian:devscripts:2.15.6
-
cpe:2.3:a:debian:devscripts:2.15.7
-
cpe:2.3:a:debian:devscripts:2.15.8
-
cpe:2.3:a:debian:devscripts:2.15.9
-
cpe:2.3:a:debian:devscripts:2.16.1
-
cpe:2.3:a:debian:devscripts:2.16.10
-
cpe:2.3:a:debian:devscripts:2.16.11
-
cpe:2.3:a:debian:devscripts:2.16.12
-
cpe:2.3:a:debian:devscripts:2.16.13
-
cpe:2.3:a:debian:devscripts:2.16.2
-
cpe:2.3:a:debian:devscripts:2.16.3
-
cpe:2.3:a:debian:devscripts:2.16.4
-
cpe:2.3:a:debian:devscripts:2.16.5
-
cpe:2.3:a:debian:devscripts:2.16.6
-
cpe:2.3:a:debian:devscripts:2.16.7
-
cpe:2.3:a:debian:devscripts:2.16.8
-
cpe:2.3:a:debian:devscripts:2.16.9
-
cpe:2.3:a:debian:devscripts:2.17.0
-
cpe:2.3:a:debian:devscripts:2.17.1
-
cpe:2.3:a:debian:devscripts:2.17.10
-
cpe:2.3:a:debian:devscripts:2.17.11
-
cpe:2.3:a:debian:devscripts:2.17.12
-
cpe:2.3:a:debian:devscripts:2.17.2
-
cpe:2.3:a:debian:devscripts:2.17.3
-
cpe:2.3:a:debian:devscripts:2.17.4
-
cpe:2.3:a:debian:devscripts:2.17.5
-
cpe:2.3:a:debian:devscripts:2.17.6
-
cpe:2.3:a:debian:devscripts:2.17.7
-
cpe:2.3:a:debian:devscripts:2.17.8
-
cpe:2.3:a:debian:devscripts:2.17.9
-
cpe:2.3:a:debian:devscripts:2.18.1
-
cpe:2.3:a:debian:devscripts:2.18.3
-
cpe:2.3:o:canonical:ubuntu_linux:17.10
-
cpe:2.3:o:canonical:ubuntu_linux:18.04