mirror of
https://github.com/0xMarcio/cve.git
synced 2026-06-04 09:48:02 +02:00
marc
1.0 KiB
1.0 KiB
CVE-2022-25857
&color=brighgreen)
Description
The package org.yaml:snakeyaml from 0 and before 1.31 are vulnerable to Denial of Service (DoS) due missing to nested depth limitation for collections.
POC
Reference
No PoCs from references.
Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Dzmitry-Basiachenka/dist-foreign-aliakh
- https://github.com/NicheToolkit/rest-toolkit
- https://github.com/danielps99/startquarkus
- https://github.com/fernandoreb/dependency-check-springboot
- https://github.com/mosaic-hgw/WildFly
- https://github.com/scordero1234/java_sec_demo-main
- https://github.com/sr-monika/sprint-rest
- https://github.com/srchen1987/springcloud-distributed-transaction