Vulnerability CVE-2017-18342

Vulnerability Name:

CVE-2017-18342 (CCN-145675)

Assigned:

2017-08-26

Published:

2017-08-26

Updated:

2020-10-14

Summary:

In PyYAML before 5.1, the yaml.load() API could execute arbitrary code if used with untrusted data. The load() function has been deprecated in version 5.1 and the 'UnsafeLoader' has been introduced for backward compatibility with the function.

CVSS v3 Severity:

9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

9.8 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-502

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2017-18342

Source: XF
Type: UNKNOWN
pyyaml-cve201718342-code-exec(145675)

Source: MISC
Type: Third Party Advisory
https://github.com/marshmallow-code/apispec/issues/278

Source: MISC
Type: Release Notes, Third Party Advisory
https://github.com/yaml/pyyaml/blob/master/CHANGES

Source: MISC
Type: Third Party Advisory
https://github.com/yaml/pyyaml/issues/193

Source: CCN
Type: pyyaml GIT Repository
Make pyyaml safe by default. #74

Source: MISC
Type: Patch, Third Party Advisory
https://github.com/yaml/pyyaml/pull/74

Source: MISC
Type: Third Party Advisory
https://github.com/yaml/pyyaml/wiki/PyYAML-yaml.load(input)-Deprecation

Source: FEDORA
Type: Third Party Advisory
FEDORA-2019-44643e8bcb

Source: FEDORA
Type: Third Party Advisory
FEDORA-2019-779a9db46a

Source: FEDORA
Type: Third Party Advisory
FEDORA-2019-bed9afe622

Source: GENTOO
Type: Third Party Advisory
GLSA-202003-45

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2017-18342

Vulnerable Configuration:

Configuration 1:

cpe:/a:pyyaml:pyyaml:*:*:*:*:*:*:*:* (Version < 5.1)

Configuration 2:

cpe:/o:fedoraproject:fedora:28:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:29:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:30:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:pyyaml:pyyaml:3.12:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201718342	V	CVE-2017-18342	2023-06-22
oval:org.opensuse.security:def:7765	P	python3-PyYAML-5.4.1-1.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:3164	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94794	P	python3-PyYAML-5.4.1-1.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:280	P	python3-PyYAML-5.4.1-1.1 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:868	P	Security update for python-paramiko (Moderate)	2022-04-28
oval:org.opensuse.security:def:113053	P	oci-cli-3.0.2-1.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:113252	P	python36-PyYAML-5.4.1-1.6 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:113278	P	python36-openapi-spec-validator-0.2.9-1.5 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:69960	P	Security update for the Linux Kernel (Important)	2021-12-02
oval:org.opensuse.security:def:106493	P	oci-cli-3.0.2-1.2 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:106664	P	python36-PyYAML-5.4.1-1.6 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:106690	P	python36-openapi-spec-validator-0.2.9-1.5 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:101056	P	python3-PyYAML-5.4.1-1.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1209	P	python3-PyYAML-5.4.1-1.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62298	P	python3-PyYAML-5.4.1-1.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72039	P	python3-PyYAML-5.4.1-1.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100637	P	(Important)	2021-07-15
oval:org.opensuse.security:def:69855	P	Security update for polkit (Important)	2021-06-03
oval:org.opensuse.security:def:116861	P	python3-PyYAML-5.1.2-6.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71698	P	python3-PyYAML-5.1.2-6.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:93924	P	python3-PyYAML-5.1.2-6.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107303	P	python3-PyYAML-5.1.2-6.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61957	P	python3-PyYAML-5.1.2-6.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:73295	P	python3-PyYAML on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49255	P	libvorbis-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49309	P	python3-PyYAML on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73177	P	libmariadb3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66512	P	libpng16-16 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66604	P	python3-PyYAML on GA media (Moderate)	2020-12-01
oval:com.ubuntu.disco:def:2017183420000000	V	CVE-2017-18342 on Ubuntu 19.04 (disco) - low.	2018-06-27
oval:com.ubuntu.bionic:def:201718342000	V	CVE-2017-18342 on Ubuntu 18.04 LTS (bionic) - low.	2018-06-27
oval:com.ubuntu.cosmic:def:2017183420000000	V	CVE-2017-18342 on Ubuntu 18.10 (cosmic) - low.	2018-06-27
oval:com.ubuntu.cosmic:def:201718342000	V	CVE-2017-18342 on Ubuntu 18.10 (cosmic) - low.	2018-06-27
oval:com.ubuntu.bionic:def:2017183420000000	V	CVE-2017-18342 on Ubuntu 18.04 LTS (bionic) - low.	2018-06-27
oval:com.ubuntu.trusty:def:201718342000	V	CVE-2017-18342 on Ubuntu 14.04 LTS (trusty) - low.	2018-06-27
oval:com.ubuntu.xenial:def:2017183420000000	V	CVE-2017-18342 on Ubuntu 16.04 LTS (xenial) - low.	2018-06-27
oval:com.ubuntu.xenial:def:201718342000	V	CVE-2017-18342 on Ubuntu 16.04 LTS (xenial) - low.	2018-06-27

BACK