nvd-json-data-feeds/CVE-2023/CVE-2023-471xx/CVE-2023-47163.json

{
  "id": "CVE-2023-47163",
  "sourceIdentifier": "vultures@jpcert.or.jp",
  "published": "2023-11-13T03:15:09.743",
  "lastModified": "2023-11-13T03:16:20.870",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "Remarshal prior to v0.17.1 expands YAML alias nodes unlimitedly, hence Remarshal is vulnerable to Billion Laughs Attack. Processing untrusted YAML files may cause a denial-of-service (DoS) condition."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://github.com/remarshal-project/remarshal/commit/fd6ac799a02f533c3fc243b49cdd6d21aa7ee494",
      "source": "vultures@jpcert.or.jp"
    },
    {
      "url": "https://github.com/remarshal-project/remarshal/releases/tag/v0.17.1",
      "source": "vultures@jpcert.or.jp"
    },
    {
      "url": "https://jvn.jp/en/jp/JVN86156389/",
      "source": "vultures@jpcert.or.jp"
    }
  ]
}
Auto-Update: 2023-11-13T05:00:20.276988+00:00 2023-11-13 05:00:24 +00:00			`{`
			`"id": "CVE-2023-47163",`
			`"sourceIdentifier": "vultures@jpcert.or.jp",`
			`"published": "2023-11-13T03:15:09.743",`
			`"lastModified": "2023-11-13T03:16:20.870",`
			`"vulnStatus": "Awaiting Analysis",`
			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "Remarshal prior to v0.17.1 expands YAML alias nodes unlimitedly, hence Remarshal is vulnerable to Billion Laughs Attack. Processing untrusted YAML files may cause a denial-of-service (DoS) condition."`
			`}`
			`],`
			`"metrics": {},`
			`"references": [`
			`{`
			`"url": "https://github.com/remarshal-project/remarshal/commit/fd6ac799a02f533c3fc243b49cdd6d21aa7ee494",`
			`"source": "vultures@jpcert.or.jp"`
			`},`
			`{`
			`"url": "https://github.com/remarshal-project/remarshal/releases/tag/v0.17.1",`
			`"source": "vultures@jpcert.or.jp"`
			`},`
			`{`
			`"url": "https://jvn.jp/en/jp/JVN86156389/",`
			`"source": "vultures@jpcert.or.jp"`
			`}`
			`]`
			`}`