Vulnerabilities (CVE)

Filtered by vendor Remarshal Project Subscribe
Filtered by product Remarshal
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-47163 1 Remarshal Project 1 Remarshal 2024-02-28 N/A 7.5 HIGH
Remarshal prior to v0.17.1 expands YAML alias nodes unlimitedly, hence Remarshal is vulnerable to Billion Laughs Attack. Processing untrusted YAML files may cause a denial-of-service (DoS) condition.