Цены Enterprise

CVE-2023-47204

9.8CRITICAL

Unsafe YAML deserialization in yaml.Loader in transmute-core before 1.13.5 allows attackers to execute arbitrary Python code.

Опубликовано: 11/2/2023Обновлено: 11/21/2024

Посмотреть на NVD Посмотреть на MITRE

Описание

Unsafe YAML deserialization in yaml.Loader in transmute-core before 1.13.5 allows attackers to execute arbitrary Python code.

ИИ-АнализНа базе ИИ

Затронутые продукты

toumorokoshitransmute-core

Ссылки

https://github.com/toumorokoshi/transmute-core/pull/58
Issue TrackingPatch
https://github.com/toumorokoshi/transmute-core/releases/tag/v1.13.5
Release Notes
https://github.com/toumorokoshi/transmute-core/pull/58
Issue TrackingPatch
https://github.com/toumorokoshi/transmute-core/releases/tag/v1.13.5
Release Notes