Vulnerabilities (CVE)

Filtered by vendor Python Subscribe
Filtered by product Jw.util
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-13388 1 Python 1 Jw.util 2024-11-21 7.5 HIGH 9.8 CRITICAL
An exploitable vulnerability exists in the configuration-loading functionality of the jw.util package before 2.3 for Python. When loading a configuration with FromString or FromStream with YAML, one can execute arbitrary Python code, resulting in OS command execution, because safe_load is not used.