VYPR
High severity8.8OSV Advisory· Published Jun 19, 2018· Updated Jun 17, 2026

CVE-2018-12565

CVE-2018-12565

Description

An issue was discovered in Linaro LAVA before 2018.5.post1. Because of use of yaml.load() instead of yaml.safe_load() when parsing user data, remote code execution can occur.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.