Vulnerability DatabaseCVE-2022-1471
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2022-1471
December 01, 2022
SnakeYaml's Constructor() class does not restrict types which can be instantiated during deserialization. Deserializing yaml content provided by an attacker can lead to remote code execution. We recommend using SnakeYaml's SafeConsturctor when parsing untrusted content to restrict deserialization. We recommend upgrading to version 2.0 and beyond.
Affected Packages
org.yaml:snakeyaml (JAVA):
Affected version(s) >=1.4 <2.0
Fix Suggestion:
Update to version 2.0
Related Resources (22)
https://bitbucket.org/snakeyaml/snakeyaml/commits/acc44099f5f4af26ff86b4e4e4cc1c874e2dc5c4
https://github.com/mbechler/marshalsec
https://bitbucket.org/snakeyaml/snakeyaml/wiki/CVE-2022-1471
https://bitbucket.org/snakeyaml/snakeyaml/issues/561/cve-2022-1471-vulnerability-in#comment-64581479
https://security.netapp.com/advisory/ntap-20230818-0015/
https://bitbucket.org/snakeyaml/snakeyaml
https://nvd.nist.gov/vuln/detail/CVE-2022-1471
https://infosecwriteups.com/%EF%B8%8F-inside-the-160-comment-fight-to-fix-snakeyamls-rce-default-1a20c5ca4d4c
http://packetstormsecurity.com/files/175095/PyTorch-Model-Server-Registration-Deserialization-Remote-Code-Execution.html
https://security-tracker.debian.org/tracker/CVE-2022-1471
https://bitbucket.org/snakeyaml/snakeyaml/issues/561/cve-2022-1471-vulnerability-in#comment-64634374
https://security.netapp.com/advisory/ntap-20240621-0006
https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2
https://confluence.atlassian.com/security/cve-2022-1471-snakeyaml-library-rce-vulnerability-in-multiple-products-1296171009.html
https://security.netapp.com/advisory/ntap-20230818-0015
https://access.redhat.com/security/cve/CVE-2022-1471
https://security.netapp.com/advisory/ntap-20240621-0006/
https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true
https://groups.google.com/g/kubernetes-security-announce/c/mwrakFaEdnc
https://bitbucket.org/snakeyaml/snakeyaml/issues/561/cve-2022-1471-vulnerability-in#comment-64876314
https://bitbucket.org/snakeyaml/snakeyaml/commits/5014df1a36f50aca54405bb8433bc99a8847f758
http://www.openwall.com/lists/oss-security/2023/11/19/1
Do you need more information?
Contact Us
CVSS v4
Base Score:
8.7
Attack Vector
NETWORK
Attack Complexity
LOW
Attack Requirements
NONE
Privileges Required
LOW
User Interaction
NONE
Vulnerable System Confidentiality
HIGH
Vulnerable System Integrity
HIGH
Vulnerable System Availability
LOW
Subsequent System Confidentiality
NONE
Subsequent System Integrity
NONE
Subsequent System Availability
NONE
Exploit Maturity
POC
CVSS v3
Base Score:
8.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
LOW
Exploit Maturity
FUNCTIONAL
Weakness Type (CWE)
Improper Input Validation
CWE-20
Deserialization of Untrusted Data
CWE-502
EPSS
Base Score:
10.0