Filtered by vendor Osbs-client Project Subscriptions
Filtered by product Osbs-client Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2019-10135 1 Osbs-client Project 1 Osbs-client 2022-11-07 7.2 High
A flaw was found in the yaml.load() function in the osbs-client versions since 0.46 before 0.56.1. Insecure use of the yaml.load() function allowed the user to load any suspicious object for code execution via the parsing of malicious YAML files.