Preços Enterprise

CVE-2023-47204

9.8CRITICAL

Unsafe YAML deserialization in yaml.Loader in transmute-core before 1.13.5 allows attackers to execute arbitrary Python code.

Publicado: 11/2/2023Atualizado: 11/21/2024

Ver no NVD Ver no MITRE

Descrição

Unsafe YAML deserialization in yaml.Loader in transmute-core before 1.13.5 allows attackers to execute arbitrary Python code.

Análise IADesenvolvido por IA

Produtos Afetados

toumorokoshitransmute-core

Referências

https://github.com/toumorokoshi/transmute-core/pull/58
Issue TrackingPatch
https://github.com/toumorokoshi/transmute-core/releases/tag/v1.13.5
Release Notes
https://github.com/toumorokoshi/transmute-core/pull/58
Issue TrackingPatch
https://github.com/toumorokoshi/transmute-core/releases/tag/v1.13.5
Release Notes