CVE-2019-3575

Vulnerability

Sqla_yaml_fixtures version 0.9.1 contains a code injection vulnerability in the load() function. The function accepts a fixture_text argument that is parsed as YAML and loaded into the database using SQLAlchemy. The YAML parser in this version does not safely restrict the types that can be deserialized, allowing attackers to include Python objects in the YAML data that are then instantiated by the loader. The vulnerability is present in any application that uses sqla_yaml_fixtures.load() with untrusted input for the fixture_text parameter [1][2][3][4].

Exploitation

An attacker must have local access to the system or be able to provide input to the fixture_text parameter of the load() function. No authentication or special privileges are required beyond the ability to call the vulnerable function with crafted YAML. The attacker crafts a YAML document that includes a payload using Python object deserialization (e.g., !!python/object:... or similar YAML tags) and passes it as the fixture_text. When load() processes this input, the malicious Python objects are instantiated and arbitrary code execution occurs in the context of the application [1][3][4].

Impact

Successful exploitation allows a local attacker to execute arbitrary Python code with the privileges of the process running the application. This can lead to full compromise of the application data and the underlying system, including data exfiltration, modification, or further lateral movement [1][3][4].

Mitigation

As of the available references, no patched version of sqla_yaml_fixtures has been released. The project appears to be unmaintained (last commit years before the advisory). Users should avoid passing untrusted or user-controllable data to the fixture_text parameter of load(). If the library is not actively used, it should be replaced with a safer alternative or the vulnerable functionality should be wrapped with strict input validation. There is no known entry in the CISA KEV catalog [1][2][3][4].