VYPR

Maven package

org.jboss.resteasy/resteasy-yaml-provider

pkg:maven/org.jboss.resteasy/resteasy-yaml-provider

Vulnerabilities (1)

  • CVE-2018-1051HigJan 25, 2018
    affected < 3.0.26.Finalfixed 3.0.26.Final

    It was found that the fix for CVE-2016-9606 in versions 3.0.22 and 3.1.2 was incomplete and Yaml unmarshalling in Resteasy is still possible via `Yaml.load()` in YamlProvider.