CVE-2023-47204 Information

Nov 03, 2023 cve

Description

Unsafe YAML deserialization in yaml.Loader in transmute-core before 1.13.5 allows attackers to execute arbitrary Python code.

Reference

https://github.com/toumorokoshi/transmute-core/pull/58 https://github.com/toumorokoshi/transmute-core/releases/tag/v1.13.5

Share on: