CVE-2023-2251: Uncaught Exception in eemeli/yaml
First published: Mon Apr 24 2023(Updated: )
Uncaught Exception in GitHub repository eemeli/yaml prior to 2.0.0-5.
Credit: security@huntr.dev security@huntr.dev
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Yaml Project Yaml | >=2.0.0-5<2.2.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-2251.
What is the severity of CVE-2023-2251?
The severity of CVE-2023-2251 is high.
Which software versions are affected by CVE-2023-2251?
The software versions affected by CVE-2023-2251 are prior to 2.0.0-5 of the YAML project YAML for Node.js.
How can I fix CVE-2023-2251?
To fix CVE-2023-2251, update your YAML project YAML version to 2.0.0-5 or higher.
Where can I find more information about CVE-2023-2251?
You can find more information about CVE-2023-2251 in the references provided: [GitHub Commit](https://github.com/eemeli/yaml/commit/984f5781ffd807e58cad3b5c8da1f940dab75fba), [Huntr Bounty](https://huntr.dev/bounties/4b494e99-5a3e-40d9-8678-277f3060e96c).
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/author
- agent/type
- agent/softwarecombine
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/title
- agent/last-modified-date
- agent/weakness
- agent/tags
- agent/first-publish-date
- agent/event
- agent/description
- vendor/yaml project
- canonical/yaml project yaml
- version/yaml project yaml/2.0.0-5