Yaml Project: >> Yaml >> 2.2.2 Security Vulnerabilities
Parsing malicious or large YAML documents can consume excessive amounts of CPU or memory.
CVSS Score
7.5
EPSS Score
0.019
Published
2022-12-27
Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be used as a denial of service vector.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-12-27