← Back to CVE List
CVE-2019-10135
A flaw was found in the yaml.load() function in the osbs-client versions since 0.46 before 0.56.1. Insecure use of the yaml.load() function allowed the user to load any suspicious object for code execution via the parsing of malicious YAML files.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt