説明
Unsafe YAML deserialization in yaml.Loader in transmute-core before 1.13.5 allows attackers to execute arbitrary Python code.
AI分析AIによる分析
影響を受ける製品
toumorokoshitransmute-core
参照
- https://github.com/toumorokoshi/transmute-core/pull/58Issue TrackingPatch
- https://github.com/toumorokoshi/transmute-core/releases/tag/v1.13.5Release Notes
- https://github.com/toumorokoshi/transmute-core/pull/58Issue TrackingPatch
- https://github.com/toumorokoshi/transmute-core/releases/tag/v1.13.5Release Notes