It was discovered that PyYAML incorrectly handled untrusted YAML files with
the FullLoader loader. A remote attacker could possibly use this issue to
execute arbitrary code.

References

ubuntu.com/security/CVE-2020-14343

ubuntu.com/security/notices/USN-4940-1

fedora 2

oraclelinux 1

redos 25

ubuntu 1

openvas 17

nessus 30

ibm 5

photon 5

cbl_mariner 1

veracode 1

osv 5

prion 1

mageia 1

f5 1

redhatcve 1

redhat 2

attackerkb 1

rocky 1

ubuntucve 1

alpinelinux 1

github 1

freebsd 1

cvelist 1

gentoo 1

nvd 1

cve 1

githubexploit 1

debiancve 1

almalinux 1

oracle 3

fedora

[SECURITY] Fedora 32 Update: PyYAML-5.4.1-1.fc32

2021-01-30 01:42:55

[SECURITY] Fedora 33 Update: PyYAML-5.4.1-1.fc33

2021-01-23 01:32:47

oraclelinux

python38:3.8 and python38-devel:3.8 security update

2021-07-02 00:00:00

redos

ROS-2-534

2021-09-08 00:00:00

ROS-2-860

2021-09-08 00:00:00

ROS-2-539

2023-07-06 00:00:00

ubuntu

PyYAML vulnerability

2021-05-10 00:00:00

openvas

Huawei EulerOS: Security Advisory for PyYAML (EulerOS-SA-2021-1168)

2021-02-02 00:00:00

Ubuntu: Security Advisory (USN-4940-1)

2021-05-12 00:00:00

Huawei EulerOS: Security Advisory for PyYAML (EulerOS-SA-2021-1723)

2021-04-13 00:00:00

nessus

EulerOS 2.0 SP8 : PyYAML (EulerOS-SA-2021-1168)

2021-02-01 00:00:00

Photon OS 3.0: Pyyaml PHSA-2021-3.0-0190

2021-02-02 00:00:00

Photon OS 1.0: Pyyaml PHSA-2021-1.0-0361

2021-02-23 00:00:00

ibm

Security Bulletin: Vulnerability in PyYAML affects IBM Cloud Pak for Data System 2.0 (CPDS 2.0) [CVE-2020-14343]

2024-03-11 12:51:16

Security Bulletin: Critical Vulnerabilities in libraries used by libraries that IBM Spectrum discover is using (libraries of libraries)

2022-03-28 16:33:43

Security Bulletin: IBM Cloud Pak for Network Automation 2.6.4 fixes multiple security vulnerabilities

2023-12-15 14:45:03

photon

Critical Photon OS Security Update - PHSA-2021-0190

2021-02-02 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0361

2021-02-22 00:00:00

Critical Photon OS Security Update - PHSA-2021-3.0-0190

2021-02-02 00:00:00

cbl_mariner

CVE-2020-14343 affecting package PyYAML for versions less than 5.4.1-1

2023-11-10 17:45:58

veracode

Arbitrary Code Execution

2020-10-27 05:37:05

osv

CVE-2020-14343

2021-02-09 21:15:12

Moderate: python38:3.8 and python38-devel:3.8 security update

2021-06-29 13:57:32

Improper Input Validation in PyYAML

2021-03-25 21:26:26

prion

Input validation

2021-02-09 21:15:00

mageia

Updated python-yaml packages fix security vulnerability

2021-03-12 04:25:47

K000139898: PyYAML vulnerabilities CVE-2020-1747 and CVE-2020-14343

2024-06-05 00:00:00

redhatcve

CVE-2020-14343

2020-07-24 17:37:40

redhat

(RHSA-2021:2583) Moderate: python38:3.8 and python38-devel:3.8 security update

2021-06-29 13:57:32

(RHSA-2021:4702) Moderate: Satellite 6.10 Release

2021-11-16 13:58:57

attackerkb

CVE-2020-14343

2021-02-09 00:00:00

rocky

python38:3.8 and python38-devel:3.8 security update

2021-06-29 13:57:32

ubuntucve

CVE-2020-14343

2021-02-09 00:00:00

alpinelinux

CVE-2020-14343

2021-02-09 21:15:12

github

Improper Input Validation in PyYAML

2021-03-25 21:26:26

freebsd

PyYAML -- arbitrary code execution

2020-07-22 00:00:00

cvelist

CVE-2020-14343

2021-02-09 00:00:00

gentoo

PyYAML: Arbitrary Code Execution

2024-02-26 00:00:00

nvd

CVE-2020-14343

2021-02-09 21:15:12

cve

CVE-2020-14343

2021-02-09 21:15:12

githubexploit

Exploit for Improper Input Validation in Pyyaml

2021-06-27 06:56:15

debiancve

CVE-2020-14343

2021-02-09 21:15:12

almalinux

Moderate: python38:3.8 and python38-devel:3.8 security update

2021-06-29 13:57:32

oracle

Oracle Critical Patch Update Advisory - July 2022

2022-07-19 00:00:00

Oracle Critical Patch Update Advisory - April 2023

2023-04-18 00:00:00

Oracle Critical Patch Update Advisory - April 2022

2022-04-19 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.0%

JSON

Related for OSV:USN-4940-1