Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
---|---|---|---|---|---|
BDSA-2023-2255 | Medium | Aug 28, 2023 | Esoteric YamlBeans is vulnerable to denial-of-service (DoS) due to the insecure parsing of nested XML elements. The vulnerability causes YamlBeans to t more... | ||
BDSA-2023-2251 | Critical | Aug 29, 2023 | YamlBeans allows untrusted polymorphic deserialisation to Java classes by default wherein the data and class are controlled by the author of the YAML d more... |