Uploaded image for project: 'Cassandra'
  1. Cassandra
  2. CASSANDRA-19141

Security vulnerabilities in SnakeYAML In Cassandra (CVE-2022-1471)

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Urgent
    • Resolution: Duplicate
    • None
    • None
    • None
    • Security
    • Critical
    • All
    • None

    Description

      Component name - SnakeYAML
      Component version name - 1.26
      CVE - CVE-2022-1471 (BDSA-2022-3447)
      CVSS - 9.8 (Critical)

      Archive Context and Path
      apache-cassandra/lib/snakeyaml-1.26.jar

      Attachments

        Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. CASSANDRA-18149 snakeyaml vulnerabilities: CVE-2021-4235, CVE-2022-1471, CVE-2022-3064

          • Normal -
          • Resolved

          Activity

            People

              Unassigned Unassigned
              Kaps_11 Kapil Shewate
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: