Uploaded image for project: 'Cassandra'
  1. Cassandra
  2. CASSANDRA-18149

snakeyaml vulnerabilities: CVE-2021-4235, CVE-2022-1471, CVE-2022-3064

    XMLWordPrintableJSON

Details

    Description

      The OWASP scan is reporting these for both snakeyaml-1.11 and snakeyaml-1.26.

      These are similar to CASSANDRA-17907 in that they require access to the yaml to have any effect.

      Attachments

        Issue Links

          Activity

            People

              brandon.williams Brandon Williams
              brandon.williams Brandon Williams
              Brandon Williams
              Berenguer Blasi
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: