Vulnerability — CVE-2022-25857

CVE-2022-25857

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2022-25857
Description:: The package org.yaml:snakeyaml from 0 and before 1.31 are vulnerable to Denial of Service (DoS) due missing to nested depth limitation for collections.
Last updated date:: 03/15/2024

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/01/2022
Reference url to background: https://bitbucket.org/snakeyaml/snakeyaml/issues/525

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/01/2022
Reference url to background: https://security.snyk.io/vuln/SNYK-JAVA-ORGYAML-2806360