Osbs-Client Project: Security Vulnerabilities
A flaw was found in the yaml.load() function in the osbs-client versions since 0.46 before 0.56.1. Insecure use of the yaml.load() function allowed the user to load any suspicious object for code execution via the parsing of malicious YAML files.
CVSS Score
7.2
EPSS Score
0.008
Published
2019-07-11