FortiClient Vulnerability

Fedora PyYAML CVE-2019-20477 Code Injection Vulnerability

Description

A vulnerability was discovered in the PyYAML library, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. An attacker could use this flaw to execute arbitrary code on the system by abusing the python/object/apply constructor.

Affected Applications

PyYAML

CVE References

CVE-2019-20477

Other References

https://bugzilla.redhat.com/show_bug.cgi?id=1806005

ID	62796
Created	Mar 07, 2020
Description Updated	Jan 24, 2024
Risk
Coverage	FortiClient
OS	Linux
Vendor	Fedora
Patch	auto
Application	PyYAML

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiClient Vulnerability

Fedora PyYAML CVE-2019-20477 Code Injection Vulnerability

Description

Affected Applications

CVE References

Other References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

FortiClient Vulnerability

Fedora PyYAML CVE-2019-20477 Code Injection Vulnerability

Description

Affected Applications

CVE References

Other References

Threat Intelligence
Center