CVE-2020-1747

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions PyYAML versions prior to 5.3.1

Description A flaw in the PyYAML library allows for arbitrary code execution when processing untrusted YAML files through the full load method or with the FullLoader loader. This issue can be exploited by an attacker to execute arbitrary code on the system by abusing the python/object/new constructor. The vulnerability exists due to insufficient input validation in the full load method and FullLoader loader.

Recommendations For versions prior to 5.3.1, update to version 5.3.1 or later to resolve the issue. As a temporary workaround, consider avoiding the use of the full load method and FullLoader loader when processing untrusted YAML files. Restrict access to untrusted input to minimize the risk of exploitation.

Exploit

Fix

Deserialization of Untrusted Data

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-502CWE-20

Related Identifiers

ALSA-2020:4641

ALSA-2021:2583

ALT-PU-2021-1521

ALT-PU-2021-1534

AZL-31783

BDU:2020-02851

CESA-2020_4641

CVE-2020-1747

GHSA-6757-JP84-GXFX

GHSA-FM6C-F59H-7MMG

MGASA-2020-0155

OPENSUSE-SU-2020:0507-1

OPENSUSE-SU-2020:0630-1

OPENSUSE-SU-2020_0507-1

OPENSUSE-SU-2020_0630-1

PYSEC-2020-96

RHSA-2020:4641

RHSA-2020_4641

RLSA-2020:4641

SUSE-FU-2022:0444-1

SUSE-FU-2022:0445-1

SUSE-SU-2020:0959-1

SUSE-SU-2020:1285-1

SUSE-SU-2020_0959-1

SUSE-SU-2020_1285-1

SUSE-SU-2022:2841-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Pyyaml

Red Hat

Rocky Linux

Suse

CVE-2020-1747

Weakness Enumeration

Related Identifiers

Affected Products

References · 92