FortiClient Vulnerability

Fedora PyYAML CVE-2020-1747 Input Validation Bypass Vulnerability

Description

A vulnerability was discovered in the PyYAML library, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted input may be vulnerable to this flaw. An attacker could use this flaw to execute arbitrary code on the system by abusing the python/object/new constructor.

Affected Applications

PyYAML

CVE References

CVE-2020-1747

Other References

https://bugzilla.redhat.com/show_bug.cgi?id=1807367

ID	63059
Created	Mar 28, 2020
Description Updated	Dec 20, 2023
Risk
Coverage	FortiClient
OS	Linux
Vendor	Fedora
Patch	auto
Application	PyYAML

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiClient Vulnerability

Fedora PyYAML CVE-2020-1747 Input Validation Bypass Vulnerability

Description

Affected Applications

CVE References

Other References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

FortiClient Vulnerability

Fedora PyYAML CVE-2020-1747 Input Validation Bypass Vulnerability

Description

Affected Applications

CVE References

Other References

Threat Intelligence
Center