Yaml-cpp Vulnerabilità

Sequenza temporale

Versione

0.6.25
0.5.32
0.5.01
0.5.11
0.5.21

Contromisure

Official Fix1
Temporary Fix0
Workaround0
Unavailable0
Not Defined6

Sfruttabilità

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined7

Accesso al vettore

Not Defined0
Physical0
Local1
Adjacent0
Network6

Autenticazione

Not Defined0
High0
Low1
None6

Interazione dell'utente

Not Defined0
Required1
None6

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤52
≤64
≤71
≤80
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤52
≤64
≤71
≤80
≤90
≤100

VulDB

≤10
≤20
≤30
≤41
≤51
≤65
≤70
≤80
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤61
≤74
≤81
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k1
<2k6
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k7
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (5): 0.5, 0.5.1, 0.5.2, 0.5.3, 0.6.2

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
07/03/20194.34.3yaml-cpp YAML File HandleFlowSequence denial of service$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-20710
15/01/20195.95.9yaml-cpp singledocparser.cpp SingleDocParser denial of service$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2019-6292
14/01/20195.95.9yaml-cpp YAML File HandleFlowSequence buffer overflow$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-6285
28/12/20185.95.9yaml-cpp YAML File HandleFlowMap buffer overflow$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-20574
28/12/20185.95.9yaml-cpp EnsureTokensInQueue buffer overflow$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-20573
30/07/20176.46.2yaml-cpp scanner.cpp peek escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2017-11692
03/04/20174.44.3yaml-cpp YAML File HandleNode buffer overflow$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2017-5950

PrecedenteVisione D'insiemeIl prossimo

Do you need the next level of professionalism?

Upgrade your account now!