定价企业版

CVE-2023-47204

9.8CRITICAL

Unsafe YAML deserialization in yaml.Loader in transmute-core before 1.13.5 allows attackers to execute arbitrary Python code.

发布于: 11/2/2023更新于: 11/21/2024

在NVD查看在MITRE查看

描述

Unsafe YAML deserialization in yaml.Loader in transmute-core before 1.13.5 allows attackers to execute arbitrary Python code.

AI分析AI驱动

受影响产品

toumorokoshitransmute-core

参考资料

https://github.com/toumorokoshi/transmute-core/pull/58
Issue TrackingPatch
https://github.com/toumorokoshi/transmute-core/releases/tag/v1.13.5
Release Notes
https://github.com/toumorokoshi/transmute-core/pull/58
Issue TrackingPatch
https://github.com/toumorokoshi/transmute-core/releases/tag/v1.13.5
Release Notes