CVE-2023-22970 Information

Description

Bottles before 51.0 mishandles YAML load which allows remote code execution via a crafted file.

Reference

https://github.com/bottlesdevs/Bottles/issues/2463