Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Jun 1, 2025· Updated Jun 2, 2025

YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified

CVE-2025-40908

Description

YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified

Affected products

1

Tinita/Yaml::libyamlv5
Range: 0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

github.com/ingydotnet/yaml-libyaml-pm/pull/121mitrepatch
github.com/ingydotnet/yaml-libyaml-pm/pull/122mitrepatch
github.com/ingydotnet/yaml-libyaml-pm/issues/120mitreissue-tracking

News mentions

0

No linked articles in our index yet.