Unrated severityNVD Advisory· Published May 26, 2023· Updated Jan 15, 2025
CVE-2023-22970
CVE-2023-22970
Description
Bottles before 51.0 mishandles YAML load, which allows remote code execution via a crafted file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Bottles/Bottlesdescription
Patches
Vulnerability mechanics
References
3- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N24KI3O3FWGKJSLATY35ZM3CHSABJ6WE/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZJZEE4RAAK7OPVQNE4BOWUVQDVSZU6NJ/mitrevendor-advisory
- github.com/bottlesdevs/Bottles/issues/2463mitre
News mentions
0No linked articles in our index yet.